This article walks through the process of sending additional Secure Assertion Markup Language (SAML) attributes for SAML applications integrated from the OIN Catalog.
- Okta Identity Engine (OIE)
- Okta Classic
- Okta Integration Network (OIN) SAML Apps
- SAML Attribute(s)
- In the Okta admin dashboard, locate the application which requires additional attributes to be sent (in addition to any SAML attributes which may, by default, be hardcoded in the backend).
- On the Single Sign-On tab, click on the Edit button on the far right under the SAML Settings section.
- Locate Attributes (Optional) and press the arrow next to that section. This will show the Attribute Statements and Group Attributes statements (as seen in the screenshot below)
NOTE: Some applications from the catalog, by default, send hardcoded attributes which are not editable or visible to Okta Admins in the Okta Admin UI. For example, an Okta Admin may be unable to add an attribute "Name" because it already exists even though it is not shown. To see what attributes are sent by default, the Okta Admin can use the "Preview SAML" function found in the same SAML Settings, or run SAML-Tracer to capture what is sent during testing.
If a specific attribute needs a non-default value, but the attribute is already hardcoded and not editable, please consider using a Custom SAML application.
