This reference doc contains provider specific information and attribute mapping tables necessary for configuring SSO with SAML.
Attribute mapping for Azure configuration:
Azure | Konnect |
---|---|
Identifier (Entity ID) | sp_entity_id |
Reply URL (Assertion Consumer Service URL) | callback_url |
App Federation Metadata Url | idp_metadata_url |
user.email |
email |
user.givenname |
firstname |
user.surname |
lastname |
user.groups |
groups |
user.principalname |
Unique user identifier |
transient
.sp_metadata_url
.
cert.pem
must use the X509Certificate
value for signing.Attribute mapping for Oracle Cloud configuration:
Oracle Cloud | Konnect |
---|---|
Entity ID | sp_entity_id |
Assertion consumer URL | callback_url |
App Federation Metadata Url | idp_metadata_url |
sp_metadata_url
.
cert.pem
must use the X509Certificate
value for signing.sp_metadata_url
for Konnect will be:http://<keycloak-url>/realms/konnect/protocol/saml/descriptor
Attribute mapping for KeyCloak configuration:
KeyCloak | Konnect |
---|---|
Client ID | sp_entity_id |
Valid redirect URI | callback_url |
App Federation Metadata Url | idp_metadata_url |