SAML addon, IDP addon or both?

My requirement is to let users sign in via Microsoft ID (Entra / formerly Azure Active Directory). However, I have multiple Cuba applications and would like to just sign in once on one of it (SSO) and automatically have logged in for the rest of the applications.

For this use case, do I use SAML addon, IDP addon or both? From the library description, I believe SAML addon is sufficient to handle it.

However, it doesn’t work as described. Once I login to Microsoft on application A (eg https://project.company.com/a), I click on a link to go application B (eg https://project.company.com/b) and it is not logged in and in fact logs out application A as well.

Have not been able to get much support or replies when it comes to these addons for Cuba.