Customize SAML Name ID

marcelina.barycka · January 2, 2024, 1:31pm

Could you try out the following scenarios under the SAML2 Web App Settings?

Mapp the “/nameidentifier” and “/emailaddress” claims with the same user property “email”:

{"mappings": {
"name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/userName",
"email": ["http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress", "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier"]
},
  "nameIdentifierProbes": [
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
  ]

Or try removing from “mappings” the
"user_id": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier"
so the Settings looks like this:

{
  "mappings": {
    "name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/userName",
    "email": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress",
  },
  "nameIdentifierProbes": [
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
  ]
}

You feedback would be appreciated!

Topic		Replies	Views
Get email address in SAML NameID Get Help saml	2	4468	September 5, 2019
Send Auth0 Id as identifier instead of email after authentication is succesasfully Get Help	1	4952	December 26, 2019
Auth0 As service provider default claim mapping Get Help saml , connections	2	4542	August 15, 2019
SAML mapping issues Get Help auth0 , saml2	1	3602	May 20, 2020
Adding custom SAML attribute when auth0 is SP JWT.io rules , samlp , saml2	6	11099	December 17, 2018

Customize SAML Name ID

Related topics