question

Rahul-7230 avatar image
0 Votes"
Rahul-7230 asked ·

Does Azure AD SAML support x.509.subject NameIdentifier ?

Hi,

I wanted to know if Azure AD supports x.509.subject NameIdentifier in SAML ?

SAML V2.0 Deployment Profiles for X.509 Subjects describes how a principal who has been issued an X.509 identity certificate is represented as a SAML Subject, how an assertion regarding such a principal is produced and consumed, and finally how two entities exchange attributes about such a principal.

Can someone validate if the above is supported then how to implement it ?

Reference Link: https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/certificate-signing-options

Is the above link referring to same concept ? Any explanation ?

azure-active-directoryazure-ad-authenticationazure-ad-authentication-protocols
· 1
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi Team,

Can anyone clarify ?

0 Votes 0 ·

1 Answer

JaiVerma-7010 avatar image
0 Votes"
JaiVerma-7010 answered ·

The article you posted is not related to what you are looking for. This is the right document - https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-saml-claims-customization

As per the document above, AAD does not support x509 name id.

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.