Select to view content in your preferred language

ArcGIS Enterprise SAML: configurable group claim

414
0
11-10-2020 07:13 AM
Status: Open
NicolasGIS
Frequent Contributor

Hello,

Following the success of my question (ArcGIS Enterprise SAML: Can the group claim be edited ?), I am asking for the group claim membership to be configurable.

Indeed, our SAML identity provider provides groups membership in a claim with a different name that the one listed in the documentation (Create groups—Portal for ArcGIS | Documentation for ArcGIS Enterprise) :

"The supported (case-insensitive) names for the attribute defining a user's group membership are Group, Groups, Roles, MemberOf, member-of, http://schemas.xmlsoap.org/claims/Group, http://schemas.microsoft.com/ws/2008/06/identity/claims/groups, urn:oid:1.3.6.1.4.1.5923.1.5.1.1, and urn:oid:2.16.840.1.113719.1.1.4.1.25."

IT service states that it "should" be configurable.

Thanks for listening !