question

JBRennit-3274 avatar image
0 Votes"
JBRennit-3274 asked ·

Adding additional claims and values for Azure SAML Based Sign ON

We are trying to add additional fields to a created enterprise application with our SAML based Sign-on in addition. The attribute we want is defined and populated in our on prem AD we just need to know how to connect that to the options in the "Add new claim section" of SAML based Sign-on.

azure-active-directoryazure-ad-app-management
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered ·

Hi @JBRennit-3274


All you need to do is use AD Connect to sync the attribute to Azure AD. E.g. you can sync your on-prem CustomAttirbute as ExtensitonAttribute1 in Azure AD. Once the attribute value is populated in Azure AD, you need to navigate to below path and add new claim as shown in the screenshot below:


Azure Portal > Azure Active Directory > Enterprise applications > You_application > Single sign-on > SAML-based Sign-on > User Attributes & Claims > + Add new claim


10168-capture.jpg


Once this is done, your enterprise application will receive CustomAttirbute claim in the token and the value of the claim will be the value populated in ExtensitonAttribute1.




Please do not forget to "Accept the answer" wherever the information provided helps you. This will help others in the community as well.



capture.jpg (26.1 KiB)
·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.