Versions Compared

Old Version 1

changes.mady.by.user Akash Kumar Jaiswal

Saved on

compared with

New Version Current

changes.mady.by.user Avinash Kumar

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Corrected links that should have been relative instead of absolute.
ser

User attribute mapping is used to identify for identifying fields in the Service Provider that you want to map from with those fields in the IdP server by synchronizing them on login. It compares the values in the SAML response in case-insensitive manner.

You can map any user field to any arbitrary SAML attribute. For example, you can map the user’s username as a Name. To map the fields:

  • Go to the …<ConnectServerInstallFolder>\AdeptiaServer\ServerKernel\etc\saml folder. 
  • Open SAMLSSOConfiguration.xml file in the text editor. 
    • Map SAML assertion attributes to Adeptia user fields in the file.
    Image Removed

    Mapping SAML assertion attributes to Adeptia user fields can be preformed by using environment variables. You need to create the following environment variables to do this mapping. 

    Tip
    For more information on how to create an environment variable on Windows or Linux, refer to this page.


    Variable NameDefault valueDescription
    SAML_SSO_MAPPINGS_0_NAME

    email


    SAML_SSO_MAPPINGS_0_MAPPEDATTRIBUTE
    subject.nameid

    SAML_SSO_MAPPINGS_0_IGNORECASE
    true


    <field> is the Adeptia user field and,

    <mapped-attribute> is the SAML assertion attribute.

    For example, here entity name of the Adeptia user field is mapped with the first name of SAML assertion attribute.

    Once you mapped
    Info
    If you want the field comparison to be case-sensitive then , you need to add set the attribute ignoreCase and set its value as false.
    Image Removed
    • You must define the ignoreCase attribute for each individual fields. This means that you can now define each field as case-sensitive or case-insensitive based on your requirement.
    • By default, ignoreCase attribute is not defined for any field. This means that the case will be ignored while doing the comparison.
    where,
    value for the variable SAML_SSO_MAPPINGS_0_IGNORECASE
    to false.

    If you want to create another mapping, you need to use the number in incremental fashion. You will be using number 1 (one) in the variable name for the next mapping, for example, SAML_SSO_MAPPINGS_1_NAME.

    Once you've mapped the fields successfully, next step is to create users in Adeptia Connect.

    Info
    It is mandatory The user must exist both in SAML and Adeptia Connect. For information on how to create users, refer to Creating users.

    Next Step

    Enabling SAML in Adeptia Connect


    Panel
    borderStylesolid
    titleYou may be interested in...
    What
    's
    is new
    Best practices
    /wiki/spaces/AC40/pages/3180519
    /wiki/spaces/AC40/pages/3181640
    Adeptia security report
    Panel
    borderStylesolid
    titleRelated links
    Creating users
    Adding bulk users
    User Roles
    Application architecture
    Key terms
    Install
    Usage scenarios