customize claims issued in the SAML token for enterprise applications in Azure AD

Eldad Somech 21 Reputation points
2020-01-06T15:57:04.237+00:00

Hi,

i wanted to know if there any option to configure claims in Azure AD enterprise application for FQDN claim.

we're syncing to Azure AD 16 subdomains, how should I identify from which domain user is coming?
the UPN claim is showing as "constoso.org.il" is it possible to have a claim with "blabla.contoso.org.il"
if it's not possible, is there any other option as FQDN?

Thanks a lot!

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,143 questions
0 comments No comments
{count} votes

Accepted answer
  1. soumi-MSFT 11,756 Reputation points Microsoft Employee
    2020-01-06T16:08:54.647+00:00

    @Eldad Somech , There is no way to get FQDN as a claim in Azure AD. But once you receive the SAML response, you can fetch the UPN claim sent for the user and then parse out the domain suffix from the UPN in your code.


0 additional answers

Sort by: Most helpful