JC.45181 (Customer) asked a question.
Hi Team,
We are facing an issue when passing groups through SAML assertions. Using the Group Filter Attribute in the Application configuration, we do not see an option to map group names from Okta to the application.
For example, the application has group names like Auditors, SysAdmin, Administrators, etc. However, in Okta, because we manage multiple applications and many associated groups, we need to name these groups with more context, such as AppName-SysAdmin, AppName-Auditors, etc.
The challenge is that in the regex filter, we can't find a way to match every group assigned to users that begins with "AppName" and then only return the portion of the group name after the hyphen, as that is the real group name used by the application.
Hello @JC.45181 (Customer) Thank you for posting on our Community page!
If you have all the groups that will be used by a specific app named with the app name, in this case you can use the option "Starts with" then in the SAML assertion all the groups that are assigned to the user that start with "AppNameX" will be sent in the SAML assertion and you do not need to use the Regex function.
Thank you for reaching out to our Community and have a great day!
--
Help others in the community by liking or hitting Select as Best if this response helped you.