<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D51Y00007i81BoSAIOkta Classic EngineSingle Sign-OnAnswered2024-04-15T10:13:54.000Z2020-02-05T09:36:43.000Z2020-05-09T14:02:19.000Z

RajasV.66419 (Customer) asked a question.

Edited February 5, 2020 at 9:55 AM
Forwarding custom attributes to SAML response

Hi,

 

I have a Looker app in Okta. I have added a custom field to the Okta as well as the Looker app.

I mapped these fields from Okta to Looker and Looker to Okta.

My SAML is enabled for Looker app.

Now at the Looker, I'm unable to access and map this custom field under Attribute pairing of SAML and Looker User attributes. It seems that only following attributes are available at the looker from SAML:

FirstName user.firstName

LastName user.lastName

Email user.userName

 

How could I access custom fields at looker through SAML ?

 

 

  • 8 answers
  • 2.18K views

  • RajasV.66419 (Customer)

     

    You can remove the OIN Looker app from your Okta org, and add it as a Custom SAML.

    Selected as Best

  • bc221 (bc221)

    Hi Rajas,

     

    You don't need to follow all mentioned steps to use custom attribute for you Looker app. Just create a custom attribute in User profile editor and simply user it in your Looker SAML app as user.<attributeName>.

     

    I want to ask you, Do you see that custom attribute under user profile. to check this go to Okta admin > Directory > People > select any user > check Profile Attributes.

     

    Second question is from where Okta gets value of that custom attribute ? from Active Directory ? if yes then you need to map that in AD profile mapping.

    e.g:

    ActiveDirectory to Okta

    (appuser.customeattribute)

     

    Let me know if you have any question.

     

     

    Expand Post

  • RajasV.66419 (Customer)

    Thank you @Vipul.

     

    Yes, I can see the custom attribute at the user profile at Okta.

     

    I'm not using Active directory, instead Okta admin is adding the user for now.

    While adding a new user we can specify the value for the custom field.

    I want to access this custom field at one of the application ie Looker.

    Expand Post

  • bc221 (bc221)

    Hi Rajas,

     

    Just checking if given steps are working for you?

     

    1] Create a custom attribute in User profile editor by visiting Directory >> profile Editor >> Select "user" >> Click Profile >> Add Attribute

    2] Go to your SAML app and use that custom attribute.

     

    Expand Post

  • RajasV.66419 (Customer)

    I have added the custom attribute as explained.

    Done the corresponding mapping as well.

    But still unable to get that attribute through the SAML.

  • bc221 (bc221)

    This is working for me. I suggest you to open a case with Okta Support to troubleshoot this issue.

  • RajasV.66419 (Customer)

     

    You can remove the OIN Looker app from your Okta org, and add it as a Custom SAML.

    Selected as Best
This question is closed.
Loading
Forwarding custom attributes to SAML response