Expand my Community achievements bar.

Dive into Adobe Summit 2024! Explore curated list of AEM sessions & labs, register, connect with experts, ask questions, engage, and share insights. Don't miss the excitement.
SOLVED

SAML Integration: Assigning user groups without adding user in AEM

Avatar

Level 1

We have requirement that the client wants to assign user groups to the users who log in using SAML integration. However, the user should not be created in AEM at all. Can anyone please suggest if it is possible?

 

Also the IDP user groups are different from the ones we have in AEM right now.

1 Accepted Solution

Avatar

Correct answer by
Community Advisor

Hello @kinjald91769604,

You can leverage 'Adobe Granite SAML 2.0 Authentication Handler' located at http://localhost:4502/system/console/configMgr to connect your IdP with SP (your AEM Site).

There is an option to create a user in CRX which should be off in your case and you can check add to groups option and specify the name of the group.

Jineet_Vora_2-1600096086076.png

 

For more details please check: https://helpx.adobe.com/experience-manager/using/aem63_saml.html


Hope this helps!

Jineet

View solution in original post

1 Reply

Avatar

Correct answer by
Community Advisor

Hello @kinjald91769604,

You can leverage 'Adobe Granite SAML 2.0 Authentication Handler' located at http://localhost:4502/system/console/configMgr to connect your IdP with SP (your AEM Site).

There is an option to create a user in CRX which should be off in your case and you can check add to groups option and specify the name of the group.

Jineet_Vora_2-1600096086076.png

 

For more details please check: https://helpx.adobe.com/experience-manager/using/aem63_saml.html


Hope this helps!

Jineet