Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
Bedrock Mission!

Learn more

View all

Sign in to view all badges

SOLVED

aem 6.5 sp13 SAML with azure AD, user is created with random string in user principal

Avatar

Level 3

Hello,
I am following this blog post
https://blog.developer.adobe.com/saml-authentication-in-aem-using-microsoft-azure-active-directory-3...
and also microsoft official documentation
https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/adobe-identity-management-tutorial

to integrate azure ad with author 6.5 sp 13 saml auth.


Authentication works but the user is always created with principalname with a random string

I tried to configure aem saml User ID attribute  with  emailaddress , uid, nameid but no luck
in azure saml token claims I see

<Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname">
<AttributeValue>Andrea</AttributeValue>
</Attribute>
<Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname">
<AttributeValue>Mysurname</AttributeValue>
</Attribute>
<Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress">
<AttributeValue>mymail@example.com</AttributeValue>
</Attribute>
<Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name">
<AttributeValue>mymail@example.com</AttributeValue>
</Attribute>

any suggestion on how to configure  Userid attribute or  Synchronized attributes
for example mapping claims to user properties like:

surname->familyName

givenname->givenName

Thanks




1 Accepted Solution

Avatar

Correct answer by
Level 3
2 Replies

Avatar

Correct answer by
Level 3