<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008C3jfXSAROkta Classic EngineOkta Integration NetworkAnswered2024-04-15T10:25:06.000Z2018-08-07T20:21:24.000Z2018-08-07T20:21:24.000Z

rflt1 (rflt1) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:19 AM
construct dynamic attribute for SAML assertion
We need a way to take user's AD groups, filter them by name starting with certain character and then extract certain part of it and do search and replace to generate the final value for assertions. there could be multiple such groups.

 

e.g.

User is part of AD group  : CLOUD-123456-Department.TESTQA

and we need to transfrom it into StartingString-123456-companyaccount-123456-suffixstring-Department.TESTQA

 

We were thinking if there was a way to split the groupname into array and then use individual array values to construct the final string and send it as assertion.

 

We need to fetch these groups starting with "CLOUD-"

 

  • 1 answer
  • 1.21K views

  • fabian.bahna1.5102194373023474E12 (Okta, Inc.)

    Hi Kamlesh, 

     

    You can filter groups in your SAML assertion, but you cannot use the expression language to modify the name and add values to it. Okta does not support this feature. You can suggest this on the Okta Community portal by using the 'Feedback' option at the bottom of the Okta admin console. Features suggested in our community are reviewed and can be voted and commented on by other members of the community, therefore making it much easier for the engineering team to understand the priorities that you have for feature requests. From there, the PM team will review the top 30 most voted upon ideas each month and provide feedback/roadmap status on these via the forum.
    Expand Post
This question is closed.
Loading
construct dynamic attribute for SAML assertion