Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
Read More & Register today!
SOLVED

what is the use of "UserID Attribute" in the SAML configuration?

Avatar

Level 5
Level 5
4/12/16 1:17:43 AM

What is the use of "UserID Attribute" in the SAML configuration. what it does exactly? can any one explains how it works with any use case.?

Views

3.1K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Level 2
Level 2
4/12/16 9:07:23 AM

kk krish wrote...

What is the use of "UserID Attribute" in the SAML configuration. what it does exactly? can any one explains how it works with any use case.?

 

Its the ID attribute your AEM instance is looking in the SAML response after authentication from IDP Server. Sample SAML Response from IDP after decryption will look like below

    <AttributeStatement>
            <Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <AttributeValue>aparker@geometrixx.info</AttributeValue>
            </Attribute>
        </AttributeStatement>

AEM will get the attribute value after it matched the ID (i,e in this case uid) and login to instance. You have to map this ID with the ID that IDP is sending. Check this SAML demo page. Attribute-filter section.

https://helpx.adobe.com/experience-manager/kb/saml-demo.html 

View solution in original post

Views

2.4K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
3 Replies

Avatar

Correct answer by
Level 2
Level 2
4/12/16 9:07:23 AM

kk krish wrote...

What is the use of "UserID Attribute" in the SAML configuration. what it does exactly? can any one explains how it works with any use case.?

 

Its the ID attribute your AEM instance is looking in the SAML response after authentication from IDP Server. Sample SAML Response from IDP after decryption will look like below

    <AttributeStatement>
            <Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <AttributeValue>aparker@geometrixx.info</AttributeValue>
            </Attribute>
        </AttributeStatement>

AEM will get the attribute value after it matched the ID (i,e in this case uid) and login to instance. You have to map this ID with the ID that IDP is sending. Check this SAML demo page. Attribute-filter section.

https://helpx.adobe.com/experience-manager/kb/saml-demo.html 

Views

2.4K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 10
Level 10
4/12/16 12:17:03 PM

Basically, a property or an attribute name which holds the user name/id at SAML is what you have to mention.

Views

2.3K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Administrator
Administrator
4/13/16 12:04:24 AM

Hi

Adding some reference for you:-

Link:- adobeaemclub.com/setting-saml-authentication/

// UserID Attribute (optional) –   This is useful if you would enable autoCreateUser. The exact value of this can be obtained from your IdP or can be looked at the SAML Response

For more information please look at his article.

 

Thanks and Regards

Kautuk Sahni



Kautuk Sahni

Views

2.3K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Richtext data type not working in Content Fragment Model Solved

Views

104

Likes

0

Replies

1
Optimizing Daily API Calls in AEM: A Better Solution? Solved

Views

163

Likes

0

Replies

5
Universal Editor - Use case Query

Views

48

Likes

0

Replies

1
RTE full options not appearing in minimized view AEM 6.5 cloud

Views

140

Likes

0

Replies

4
Serve Images in Next-Gen Format i.e in WebP and AVIF

Views

268

Likes

0

Replies

2