Adding additional claims and values for Azure SAML Based Sign ON

JB_Rennit 1 Reputation point
2020-06-15T17:47:58.917+00:00

We are trying to add additional fields to a created enterprise application with our SAML based Sign-on in addition. The attribute we want is defined and populated in our on prem AD we just need to know how to connect that to the options in the "Add new claim section" of SAML based Sign-on.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,563 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. AmanpreetSingh-MSFT 56,506 Reputation points
    2020-06-16T09:12:14.083+00:00

    Hi @JBRennit-3274

    All you need to do is use AD Connect to sync the attribute to Azure AD. E.g. you can sync your on-prem CustomAttirbute as ExtensitonAttribute1 in Azure AD. Once the attribute value is populated in Azure AD, you need to navigate to below path and add new claim as shown in the screenshot below:

    Azure Portal > Azure Active Directory > Enterprise applications > You_application > Single sign-on > SAML-based Sign-on > User Attributes & Claims > + Add new claim

    10168-capture.jpg

    Once this is done, your enterprise application will receive CustomAttirbute claim in the token and the value of the claim will be the value populated in ExtensitonAttribute1.


    Please do not forget to "Accept the answer" wherever the information provided helps you. This will help others in the community as well.

    0 comments No comments