User16660261248999665974 (Customer) asked a question.
SAM Account Name
we can get the user attributes in okta user endpoint, but we need SAM AccountName also as an attribute.
If there is any possible way to get the SAM Account Name in access token?
- a0n5s (a0n5s)
you can reference by expression in the profile mapping for the attribute like:
active_directory == null ? substringBefore(user.login,'@') : active_directory.samAccountName
- DonF.81354 (Customer)
I see that your question is tagged "API Access Management" and as such, I am interpreting your request as being a custom claim needed in your access/id token.
You can add this custom claim, specifying the exact value/attribute you want using the Okta Expression Language, in the below article:
Customize tokens returned from Okta with custom claims
Search for "Add a custom claim to a token" and it will walk you through step by step for API access management and creation of a custom claim.
Please use the Token Preview tab to verify that you see the custom claim value. Thanks!
Expand Post
This question is closed.
I see that your question is tagged "API Access Management" and as such, I am interpreting your request as being a custom claim needed in your access/id token.
You can add this custom claim, specifying the exact value/attribute you want using the Okta Expression Language, in the below article:
Customize tokens returned from Okta with custom claims
Search for "Add a custom claim to a token" and it will walk you through step by step for API access management and creation of a custom claim.
Please use the Token Preview tab to verify that you see the custom claim value. Thanks!