I used the SAML 2.0 template to build a new SAML app. The SP is telling me that I am missing required attributes from the assertion - First Name, Last Name and email. My understanding is that these are standard attributes. If not, how do I add? Skip to main content
https://support.okta.com/help/answers?id=906f0000000blqtiai&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Angela CragheadAngela Craghead 

I used the SAML 2.0 template to build a new SAML app. The SP is telling me that I am missing required attributes from the assertion - First Name, Last Name and email. My understanding is that these are standard attributes. If not, how do I add?

Ryan Tapp (Admin)Ryan Tapp (Admin)
Angela, in the section "Attribute Statements", what, if anything are you sending?  If namespace unspecified (the default) is OK for the SP and they expect "FirstName", you would need to release:

FirstName|${user.firstName}

or if you needed a specific namespace (for example basic):

FirstName|${user.firstName}|urn:oasis:names:tc:SAML:2.0:attrname-format:basic

Use the same format and seperate by comma for multiple attributes.  You can find the attribute names by picking any user and looking at the profile "tab".
Angela CragheadAngela Craghead
Thank you Ryan! I will give this a shot and respond back.
Tony WongTony Wong
Also, if you are using AD or other source you'll need to the instance ID in the mapping too.   It's best to go the actual app that you created and click on "View Setup Instructions" button under the "Sign On" tab, you'll see the instance ID of all the external accounts and examples to configure an attribute statement