Manage User Session/Authentication Context Schema
-
Navigate to Authentication » Settings » Attributes in a workspace of your choice.
-
Select CREATE ATTRIBUTE.
-
In the Add attribute dialog box, fill in the Name, Data type, and Description fields.
-
Select Create to save your new attribute.
Result
You can now proceed to mapping IDP-specific attributes to user session attributes to it.
Map Incoming User Attributes to User Session Attributes
-
Select Authentication » Providers in the workspace of your choice.
-
Select an available IDP.
-
Select Mappings from the top menu.
-
Configure each source-target attributes pair so that a source attribute matches a target one.
-
Select a source IDP attribute name from the drop-down list.
Note
- If the source attribute is not defined out of the box (for example when the IDP provides
a custom attribute, such as
crm_id
), you need to add this attribute to the IDP before you can map it. - To add an attribute for your identity, go to Identity Data > Identities (left sidebar) > Identity (from the IDP list) > Attributes tab > Add attribute.
- If the source attribute is not defined out of the box (for example when the IDP provides
a custom attribute, such as
-
Select a target authentication context attribute from the drop-down list.
-
Select Save mappings. Your mappings are added to the list.
-
Persistent User Session
For persistent user sessions, enable the SSO capabilities.