Hi,
We are trying to implement Authentication usin OOTB SAML Handler to one of our application. We see an option to auto create users and assign them to default aem user groups. Our requirement is that there are two types of users 1. Dealer Admin and 2. Dealer user. I could not understand how we can differentiate between these two users after successful login using same SAML configuration.
Also out of the below two approaches on user, user group creation and assigning permissions which one is preferable
1. Auto Create users and assign them to user group created manually
2. Create users, user groups and manage permissions manually. With respect to this, does AEM expose any API which can be invoked by IDP or AD to create users and user groups.
Any suggestions on this would be very helpful.