Default username for SAML logins

MatthewWencel

In AGOL Organisation > Settings > New member defaults there is the 'username format' pattern that is not respected by SAML user creation.

Idea: make the SAML username be created following the pattern, or at least add a tiny explanation note saying that this setting does not apply to SAML usernames.

jorisfrenkel · ‎07-03-2023

Hi Matthew,

SAML usernames cannot be created at will, according to a pattern you like. The SAML user name is determined by the identity that ArcGIS Online receives from your Identity Provider, your IDP. ArcGIS Online then adds an underscore plus the shortname for your organisation.

But yes, an explanation note would be welcome.

This way of creating the usernames when using SAML is a nuisance by the way, because if you instruct your IDP to use the UPN, it will usually result in your organisation name, or some form of it, occurring twice in the ArcGIS Online username. Nevertheless, my organization opted for this way, since we consider it the best future-proof option.

DMBowman · ‎08-02-2024

We have similar issue whereby we would like the default username to be the email address, which is what we see for SAML. For whatever reason, AGOL is still tacking on the organization name even through I modified the username default to not include