...
local user - created locally by the application administrator, see Settings - Users
remote user - user from remote directory, which is either:
Active Directory (AD) - see Settings - Active Directory
Active Directory Federation Services (ADFS) - see Settings - ADFS
Local users
Local users log in to the application by using the standard login form directly in the application. All their data are stored only locally in the application. The verification of their login credentials is also only local, against the built in application database.
...
Remote users can log in to the application, only if the administrator correctly configured either Active Directory or ADFS integration. In this case the user credentials are not verified locally in the application, but remotely in the appropriate remote directory.
Right after first successful login of a remote user, this user is also created in the application and visible in the list of application users. So this list only shows the users, which at least once logged into the application. And only these users (plus local users) count towards the license limit, see Settings - Configuration - License. So the user licences are not used by all existing AD/ADFS users, unless they use the application.
If a remote application user was deleted in the remote AD/ADFS directory, than this is not automatically reflected in the application. The user’s account stays in the application as it existed during his last successful login. If the administrator wants to delete such a user even in the SOFiE application, he has to delete him manually in Settings - Users.
For details about the login process for each of the remote directory services, see below:
...