When you have SSO configured in Aha! Roadmaps, but not in a Aha! Ideas portal, we found that there appears to be a backend relationship not visible to administrators and this will allow users with Roadmap accounts to authenticate via Roadmaps SSO connection while logging into the Ideas portal. If a user does not have a Roadmap user account and is signing into the same Ideas portal, then they will be prompted to create a password for their Idea Portal account. There is currently no way for an administrator to determine which users are using a password vs which one is using SSO and being able to view this relationship and/or a login type on a per-user basis (SSO / Manual).