This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 61%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EES%3C/text%3E%3C/svg%3E)
Hi,
i wanted to know if there any option to configure claims in Azure AD enterprise application for FQDN claim.
we're syncing to Azure AD 16 subdomains, how should I identify from which domain user is coming?
the UPN claim is showing as "constoso.org.il" is it possible to have a claim with "blabla.contoso.org.il"
if it's not possible, is there any other option as FQDN?
Thanks a lot!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 2%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
@Eldad Somech , There is no way to get FQDN as a claim in Azure AD. But once you receive the SAML response, you can fetch the UPN claim sent for the user and then parse out the domain suffix from the UPN in your code.
Thanks soumi!
any other alternative you can think of? or it is the only way?
Thanks !
@Eldad Somech , This is the only way available, as there is no way to send the FQDN in a claim, also there is no possible way available to parse this value within the claims.
For now, you would have to go ahead fetching the UPN and then splitting the domain suffix and then using it.
-------------------------------------------------------------
Please do mark the response as answered, if that answered your query.
Thanks for that.