SAML field reference
| SAML Settings | Description |
|---|---|
| SP Entity ID | SP Entity ID or Issuer is used to identify your app against the SAML request received from SP. The SP Entity ID or Issuer can be in either URL or in String format. |
| ACS URL | The location to send the SAML assertion using a POST operation. This URL is required and serves as the default Assertion Consumer Services (ACS) URL value for the Service Provider (SP). This URL is always used for Identity Provider (IdP) initiated sign-on requests. |
| Audience URL | Audience URL, as the name suggests, specifies the valid audience for SAML Assertion. It is usually the same as SP Entity ID. If the Audience URL is not specified separately by SP, leave it blank. |
| Single Logout URL | The URL where you want the logout request to be consumed and where your users should be redirected after single logout from the applications. |
| Attribute Mapping Settings | Description |
|---|---|
| Name ID | NameID defines what SP is expecting in the subject element of SAML Assertion. Generally, NameID is Username of Email Address. |
| Name ID Format | NameID format defines the format of subject element content, i.e. NameID. For example, Email Address NameID format defines that the NameID is in the form of an email address, specifically “addr-spec”. An addr-spec has the form local-part@domain, has no phrase (such as a common name) before it, has no comment (text surrounded in parentheses) after it, and is not surrounded by “<” and “>”. If NameID format is not externally specified by SP, leave it unspecified. |
| Add SAML Response Assertion Attributes | You can Add Attributes to be sent in SAML Assertion to SP. The attributes include user’s profile attributes such as first name, last name, full name, username, email, custom profile attributes, and user groups, etc. |
Updated 12 months ago