Federation Manager Guide › User Directory Connections for Authentication › Create a Common View of the Same User Information Across Directories › Apply Mappings to Assertion Attributes

Apply Mappings to Assertion Attributes

After you define user attribute mappings for your user directories, add the user attribute mapping to the assertion configuration for the asserting-to-relying party partnership. The mapping helps the asserting party include the right attributes in the assertion, regardless of the different attributes for each directory type.

The Name ID type can be a user attribute in the assertion configuration.

Follow these steps:

1. Log on to the Federation Manager UI.
2. Select Federation, Partnerships.

   The Federation Partnership List displays.

3. Select Action, Modify for the local asserting party partnership.
4. Navigate to the Assertion Configuration tab.
5. In the Assertion Attributes section, click Add Row.
6. Enter the data from the user mappings into the fields as follows:

   Assertion Attribute

   Specify any name for the name/value pair of an assertion attribute.

   Format

   Choose the format that indicates how to interpret the attribute name.

   Type

   User attribute

   Always select the user attribute type as the value for this field.

   Value

   Enter the value from the Name field in the user mapping section of the User Directory dialog.

   Example: If the Name you assigned to a mapping is FullName, enter FullName in this field.

7. (Optional). The Name ID type can be a user attribute so make the Value field for the Name ID entry match the Value field in the assertion attribute entry. The assertion then uses the same user attribute for the Name ID and the assertion attribute that identifies the user.
8. Repeat the procedure in the previous step for all assertion attributes.
9. Navigate to the Confirm step and click Finish to save your changes.