Hello @Avinash Banjan and thanks for reaching out. For NameID claim transformation, the Join() function has specific behavior when the transformation input has a domain part. It will remove the domain part from input before joining it with the separator and the selected parameter. For example, if the input of the transformation is ‘joe_smith@Company portal .com’ and the separator is ‘@’ and the parameter is ‘fabrikam.com’, this will result in joe_smith@fabrikam.com.
For how to configure claims mapping and transformation (with samples) please take a look at Configure SAML-based single sign-on for your application using the Microsoft Graph API
Let us know if you need additional assistance. If the answer was helpful, please accept it and complete the quality survey so that others can find a solution..