Determine what User table field matches the NameID token

Watch

Save as PDF

Share this page

Feedback

HomeXanadu Platform securityAccess ManagementAuthenticationMulti-Provider Single sign-on (SSO)SAMLService Provider (SP) system propertiesSet up a NameID policy for SAMLDetermine what User table field matches the NameID token

Table of Contents

Determine what User table field matches the NameID token

Release version:
Xanadu
Yokohama
Washington DC
Vancouver
UpdatedAug 1, 2024
1 minute read

Xanadu
Platform Security

Identity providers specify what format the NameID token has.

Before you begin

Role required: admin

About this task

Setting up SAML 2.0 requires selecting a field from the User table that matches the format of the NameID token. Typically, IdPs offer the option to use an email address as the NameID token. Since the User table contains an email field, this field is a logical choice for use as a NameID token. To use another field from the User table as the NameID token, first verify that the IdP offers a NameID format that matches the value of a User table field. This may require adding the field to the User table.

Procedure

Compare the available formats in the IdP's NameIDFormat element to fields in the User table.
Select a NameID format where there is a matching value in the User table.
In the The User table field to match with the Subject's NameID element in the SAMLResponse field, enter the name of the User table field to search for matching values in the NameID token.

By default, the integration uses the email field.

Was this topic helpful?

Yes No

Set up a NameID policy for SAML

Set the IdP NameID policy

Set up a NameID policy for SAML

Set the IdP NameID policy

Xanadu Platform security

Filters

Versions

Products