What are the supported properties when creating a SAML connection via the management API?

Hello! I would like to create SAML connections via the management API however I’m unable to find the supported properties for this connection.

They are not listed here: Auth0 Management API v2

A similar question was asked here: How to create a new SAML connection using the management API? - #3 by lomesh.patel

Is there somewhere these properties are documented?

Hi @jivinivan ,

Thank you for reaching Auth0 Community!

To created a SAML connections via the management API, please click here, and add the body scripts like below:

“name”: “xxx”,
“strategy”: “samlp”,
“options”: {
“metadataURL”: “yyy”

Hope this helps! Please feel free to let us know if any further queries.

1 Like

Thank you Lihua! This is helpful. Is there somewhere I can find all supported options? I’m looking for the field names for all options on the following page (including certificate upload):

You are welcome :slight_smile:

Does this page has the info you are looking for?

1 Like

Unfortunately it does not. That doesn’t seem to list the options field names to be used in Management API. How would you recommend I find those out?

I’m happy to file a support request if that’s the best next step!

Here is the list of options for creating SAML connection in the Management API. I was able to create the connection successfully.

  "options": {
    "cert": "-----BEGIN CERTIFICATE——your-certificate——END CERTIFICATE-----\n",
    "debug": true,
    "expires": "2031-09-09T19:24:22.000Z",
    "subject": {
      "commonName": "dev-39112510",
      "countryName": "US",
      "emailAddress": "info@okta.com",
      "localityName": "San Francisco",
      "organizationName": "Okta",
      "stateOrProvinceName": "California",
      "organizationalUnitName": "SSOProvider"
    "metadataUrl": “you-metadata-url”,
    "signingCert": "",
    "thumbprints": [
    "bindingMethod": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
    "disableSignout": false,
    "signInEndpoint": "you-signin-endpoint”,
    "digestAlgorithm": "sha1",
    "protocolBinding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
    "signOutEndpoint": null,
    "signSAMLRequest": false,
    "user_id_attribute": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier”,
    "signatureAlgorithm": "rsa-sha256"
  "strategy": "samlp",
  "name": "okta-test2",
  "is_domain_connection": false,
  "show_as_button": false,
  "enabled_clients": []

Please let us know how it goes. Thanks!

1 Like

This is exactly what I was looking for, thank you!

If you have a moment it might be helpful to update this related post as well How to create a new SAML connection using the management API? - #4

Thank you @jivinivan for the confirmation. I have updated this article with the solution.

Have a great rest of your day!


This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.