Forum Discussion
Azure AD SAML - Is it possible to apply filtering on group claims?
Hi, I know it's possible to send security group names in SAML response using the group claim in Azure AD. But is it possible to filter groups based on some criteria? Suppose there's a require...
Yes, there are a few advanced options described in this support article for reducing the number of groups emitted https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-fed-group-claims#advanced-options
Hello Joe
I have a similar question:
Is it possible to apply filtering on group claims using Regex in Azure AD for SAML app?
As far as I know, regex option in Azure AD for Groups is not there at the moment. Could you please confirm.
Thanks&Regards
Abhishek
I have a similar question:
Is it possible to apply filtering on group claims using Regex in Azure AD for SAML app?
As far as I know, regex option in Azure AD for Groups is not there at the moment. Could you please confirm.
Thanks&Regards
Abhishek
In the Azure AD Application "Users and Groups" you can require a group named O365_Users.
Then in the Group Claims, you can select the option to only send the groups that are associated with the application.
So the filtering is basically done by adding the groups to the application, then only those groups would be sent. Make sense?
Since you gave the options "Groups Assigned to the Application", I have one more question for you. If you can plz help.
After I select "Groups Assigned to the Application", I want to assign about 4500 groups to the app. I have thousands of users using the app however no users group membership will go past 100. My question is :
How can we bulk assign Groups to my App ? Portal does not give the option.
- Joe Stocker
the app does use app role for any authorization.
I thought of using the command: New-AzureADUserAppRoleAssignment
https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/assign-user-or-group-access-portal#assign-users-and-groups-to-an-app-using-powershell
