This article outlines the steps to pass a user's group membership in a Security Assertion Markup Language (SAML) assertion from Okta using the legacy configuration.

• Group Attribute Statements
• Custom SAML Applications
• Secure Assertion Markup Language (SAML)
• Single Sign-On (SSO)

To pass a user's group membership in a SAML assertion, please follow the steps below:

1. Access the Okta Admin Console.
2. Search for the custom SAML application by navigating to Applications > Applications.
3. Click on the Sign On tab.
4. Scroll down and click on Show legacy configuration.

5. Under Group Attribute Statements, define the Name of the group attribute and specify the condition for the groups to be passed based on the Filter. Choose keywords to use or a Regex to define the group memberships.

5. Click Save.

Related References

• Define group attribute statements