LukeV.32750 (Customer) asked a question.
- We have customers using their own Identity Provider (e.g. Salesforce Orgs)
- There is a SAML 2.0 IDP connection set up between their IDP and our Okta Org
- There is an Okta IDP routing rule that says that if a user's email domain matches a pattern while attempting to log into our service through Okta then they get directed to the SAML IDP
- Everything works up until this point and the user gets re-directed to their identity provider to sign in.
However, users have to re-type in their email address at their IDP.
- What we would like is to have the user's email be auto-populated at their identity provider sign in page as a user experience enhancement; so that they do not have to re-type in their emails.
- Is it possible to pass the user's email address / subject from Okta to the IDP. There is a SAML POST in this flow and it looks like an SP initiated SAML flow where we can preserve that attribute.
Hello @LukeV.32750 (Customer) Thank you for reacting out to our Community!
If you are using Classic engine, then this feature is available. This should be an available feature for OIE engine. I have tested this with a few applications like Okta to Okta, O365 and Box and this works nicely.
I would recommend to test this is a Preview OIE environment to make sure everything works as intended.
Community members help others by clicking Like or Select as Best on responses. Try it today.
Watch and Learn: New Okta how-to videos, plus what's new this month in the May newsletter.