Adding additional claims and values for Azure SAML Based Sign ON

JB_Rennit 1 Reputation point
2020-06-15T17:47:58.917+00:00

We are trying to add additional fields to a created enterprise application with our SAML based Sign-on in addition. The attribute we want is defined and populated in our on prem AD we just need to know how to connect that to the options in the "Add new claim section" of SAML based Sign-on.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,482 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. AmanpreetSingh-MSFT 55,376 Reputation points
    2020-06-16T09:12:14.083+00:00

    Hi @JBRennit-3274

    All you need to do is use AD Connect to sync the attribute to Azure AD. E.g. you can sync your on-prem CustomAttirbute as ExtensitonAttribute1 in Azure AD. Once the attribute value is populated in Azure AD, you need to navigate to below path and add new claim as shown in the screenshot below:

    Azure Portal > Azure Active Directory > Enterprise applications > You_application > Single sign-on > SAML-based Sign-on > User Attributes & Claims > + Add new claim

    10168-capture.jpg

    Once this is done, your enterprise application will receive CustomAttirbute claim in the token and the value of the claim will be the value populated in ExtensitonAttribute1.

    Please do not forget to "Accept the answer" wherever the information provided helps you. This will help others in the community as well.