Adobe Experience Manager Sites & More

kinjald91769604 · ‎14-09-2020

We have requirement that the client wants to assign user groups to the users who log in using SAML integration. However, the user should not be created in AEM at all. Can anyone please suggest if it is possible?

Also the IDP user groups are different from the ones we have in AEM right now.

Jineet_Vora · ‎14-09-2020

Hello @kinjald91769604,

You can leverage 'Adobe Granite SAML 2.0 Authentication Handler' located at http://localhost:4502/system/console/configMgr to connect your IdP with SP (your AEM Site).

There is an option to create a user in CRX which should be off in your case and you can check add to groups option and specify the name of the group.

For more details please check: https://helpx.adobe.com/experience-manager/using/aem63_saml.html

Hope this helps!

Jineet

Jineet_Vora · ‎14-09-2020

Hello @kinjald91769604,

You can leverage 'Adobe Granite SAML 2.0 Authentication Handler' located at http://localhost:4502/system/console/configMgr to connect your IdP with SP (your AEM Site).

There is an option to create a user in CRX which should be off in your case and you can check add to groups option and specify the name of the group.

For more details please check: https://helpx.adobe.com/experience-manager/using/aem63_saml.html

Hope this helps!

Jineet

Adobe Experience Manager Sites & More

SAML Integration: Assigning user groups without adding user in AEM

Learn

Documentation

Community

Support

Resources

Adobe account

Adobe