Admin config: Optional sso master password policy

Hello everyone! I would like to know how to configure this field that appears on the admin page of Vaultwarden. This version of Vaultwarden comes from Timshel’s repository, where it has SSO-enabled and SSO-support. I understand that the SSO_MASTER_PASSWORD_POLICY field configures the master password, but I’m not sure how it should be set up, or if it’s possible to configure it so that users don’t need to enter the master password, allowing access only through SSO.

Thank you very much; I look forward to your response!

I guess it’s not possible.

A master password is still required and not controlled by the SSO (depending on your point of view this might be a feature ;).

It seems that SSO_MASTER_PASSWORD_POLICYis a JSON to enforce things like complexity.

A master password is still required and not controlled by the SSO (depending on your point of view this might be a feature ;).

Forgive me for my stupidity, but does this not defeat the whole purpose of SSO? My users will 100% complain and ask why they still need a second password.
Any one knows if I can still disable it? I have 2fa on my SSO, I trust it enough.