Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
Create a REGEX with EntraID to extract informations from group with multiples transformations for SAML Token
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
Hello,
We have a group in our Azure AD we want to extract the end to send in a SAML Token as attribute.
Let say we have this group: GRP-AppName-RoleName1-SubRoleName2
We wan to extract what is after "GRP-AppName-" --> RoleName1-SubRoleName2
And also put the result in lowercase and replace the - with a .
Meanning we want the end result to be rolename1.subrolename2
We dit the following test with RegexReplace()
But the result is RoleName1-SubRoleName2 and we don't know how to put the result in lowercase and replace the - with .
Currently we are doing this with our current SAML Identity Provider Siteminder with the following REGEX
TRANSLATE(LCASE(ENUMERATE(memberOf,AFTER(RDN(STRING(%0)),'GRP-AppName-',TRUE))),"-",".")
How can we achieve this with the EntraID Regex?
Thanks
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes
-
Anonymous
2024-09-20T21:09:07.75+00:00 Hi @Denis R , please try this and let me know if it works:
RegexReplace(ToLower(RegexReplace(memberOf, "^.*GRP-AppName-", "")), "-", ".") -
Anonymous
2024-09-23T13:25:11.94+00:00 Hello James, thanks for your answer, but where i'm supposed to put this REGEX?On the UI I can put the REGEX in "Regex pattern: but I also need to put something in "Regex replacement pattern"
Can you clarify?
Thanks
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGC%3C/text%3E%3C/svg%3E)
Gregoire Couderc 5 Reputation points2024-09-23T14:12:26.39+00:00 Hi James, where to put this regex ?
-
Anonymous
2024-09-27T19:14:52.0933333+00:00 @Denis R Sorry for the delay in response! You can put this in the Regex replacement pattern field, or use a custom policy.
-
Anonymous
2024-10-01T18:01:26.64+00:00 That's not how it's supposed to work, can you show us a Working example?
Like I said last week, we need to put something in "Regex pattern" and also in "Regex replacement pattern"
Sign in to comment
Sign in to answer