When calling the API User - Create Or Update with payload for creating a user with an AAD identity, the user is created with both basic and AAD as identity providers
Example request
{
"properties": {
"firstName": "John",
"lastName": "Doe",
"email": "john@email.com",
"appType": "developerPortal",
"identities": {
"id": "AAD object id",
"provider": "Aad"
}
}
}
Our workaround is to create a subsequent PATCH request User - Update with exactly the same body which removes the basic identity. However one should expect that the first PUT call for creating the APIM user would create the user with only the AAD identity.