When you remove a member with CloudSSO permissions from your resource directory, the CloudSSO-related resources and access configurations of the member are automatically deleted, and CloudSSO users can no longer access the member's resources.
- The following CloudSSO-related resources of the member are automatically deleted:
- The RAM roles whose names start with AliyunReservedSSO
- The identity providers (IdPs) whose names start with AliyunReservedSSO
- The custom policies whose names start with AliyunReservedSSO
- The service-linked role AliyunServiceRoleForCloudSSO
- The permissions and access configurations provisioned for the member are automatically deleted from CloudSSO.
- CloudSSO users can no longer access the resources of the member.