This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 55.00000000000001%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Hello,
We would like to use Azure AD to answer AttributeQuery requests in SAML2, so that the number of attributes (and their choice) sent back, can be dependant of the connecting SP. For example:
I only want to use a single Entreprise Application.
In SAML2 AttibuteQuery profile allows you to send in every Request the list of attributes you want to receive back from the IdP.
Does Azure supports something like this ?
Thanks in advance,
Thanks for reaching out.
As far as I remember, Azure AD doesn't support Attribute Query profile with SAML protocol. However, double checking with product group to get authoritative answer, will keep you updated. Thanks
@Alice Favre ,,
I'm still waiting for an update from product group meanwhile could you please confirm, what do you mean by SP? Service Principal or Service Provider ? Thanks.
Hello,
By SP we mean Service Provider.
Many thanks for the answer,
Hello, I have checked with our product group and understand that Azure AD doesn't support Attribute Query profile. Therefore, only supported way is to add specific claim to respective application using claim mapping. To know more about : https://learn.microsoft.com/en-us/azure/active-directory/develop/active-directory-saml-claims-customization
@Alice Favre , Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept the answer" and Up-Vote for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Thanks,
Hello @Alice Favre ,
Thanks for reaching out.
Azure AD doesn't support Attribute Query profile. Therefore, only supported way is to add specific claim to respective application using claim mapping. To know more about : https://learn.microsoft.com/en-us/azure/active-directory/develop/active-directory-saml-claims-customization
Hope this helps.
------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.