Mar 15 2018
- last edited on
May 24 2021
When setting up a third party application for SSO. The user attributes "Value's" always start with "user." (e.g. user.userprincipalname, user.mail, user.surname, etc.)
Can I edit out the initial "user." or is this necessary for Azure (e.g. userprincipalname, mail, surname)
Thanks for any help
Mar 17 2018 12:44 AM
As far as I know, this is the way Azure AD works. It points out that it's going to use the userprincipname attribute from the user. Or the mail attribute from the user. You could for example also add group attributes to SAML. Then it would be group.mail, or group.name.
So the user. is to point out that you're using a user attribute and the userprincipalname, mail or surname part is to point to the actual attribute.