Jump to content

Is it possible to take an extracted LDAP attribute, and pass it to a SAML action?

Recommended Posts

Pretty standard setup here. Using AAA with username/password. Users are entering their username as DomainUser which works fine. The next factor is a policy label with a noscheme which then has a SAML action/server bound for MFA. Need to pass the sAMAccount name, and not what the user entered into the authentication form. I've tried leveraging the user expression in the schema field, but it simply does not pass down to the SAML action/server.


Link to comment
Share on other sites

  • 2 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...