Previous Topic: Enable the Artifact Binding for SAML Authentication at the SPNext Topic: Configure Digital Signing (required for POST Binding)

Federation Security Services GuideDeploy Federation Using a Manual ConfigurationAdd Functionality to the Federation DeploymentInclude an Attribute in the Assertion

Include an Attribute in the Assertion

You can add attributes from the user store record to a SAML assertion to identify a user. The attribute must exist in the user store of the Identity Provider for that specific user who is requesting access to the target resource.

For this deployment, an attribute is added for user1.

To add the firstname attribute

  1. Log in to the FSS Administrative UI.
  2. Select the Attributes tab from the SAML Service Provider Properties dialog.
  3. Click Create.

    The SAML Service Provider Attribute dialog opens.

  4. Complete the following fields:
    Attribute

    unspecified (default)

    Attribute Kind

    User Attribute

    Variable Name

    firstname

    Attribute Name

    givenname

    givenname is a attribute in the profile of user1.

  5. Click OK to save your changes and return to the Attributes tab.