FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    Fusion Auth integration with Azure AD Saml the saml response returns user id as the nameid instead of the user email

    Scheduled Pinned Locked Moved Unsolved
    Q&A
    2
    3
    483
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mr.sahand
      last edited by

      I created an application in FusionAuth that uses SAML internally but it also uses an Azure AD created as a fusion auth identity provider. the SAML Nameid is defined as useremail in the actual Azure AD (it is the newest Azure AD which I believe Microsoft changed its name to Entra ID) which is configured as Saml. However when I test the integration the Nameid returns to my web application is id which turned out to be the user id created by fusion auth. However I was expecting the Saml response to return the user mail. I also changed the nameid format to email in both Azure AD and Fusion Auth IDP. why does the fusion auth return fusion auth user.id as part of saml response to my web application?

      mark.robustelliM 1 Reply Last reply Reply Quote 0
      • mark.robustelliM
        mark.robustelli @mr.sahand
        last edited by

        @mr-sahand Have you considered using a lambda to populate the info as you want it?

        Lambda Overview

        SAML v2 Populate Lambda (https://fusionauth.io/docs/extend/code/lambdas/samlv2-response-populate)

        SAML v2 Reconcile Lambda

        M 1 Reply Last reply Reply Quote 0
        • M
          mr.sahand @mark.robustelli
          last edited by

          @mark-robustelli , thanks the issue though was my web app was sending the nameid format as persistent after removing it the issue was resolved.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post