My Oracle Support Banner

OAM Federation Attribute Entries for Multivalued Groups Incorrectly Generated When Group Names Contain Comma Characters (Doc ID 2544221.1)

Last updated on MAY 24, 2022

Applies to:

Oracle Access Manager - Version 11.1.2.3.181016 and later
Information in this document applies to any platform.

Symptoms

When using the multivaluegroups in Federation, which causes user groups to be sent in individual AttributeValue entries in the SAML assertion, group names containing commas are misrepresented in the SAML assertion attributes.  For example, if the user is a member of groups named "escapetest,newgroup" and "secondtest,newgroup" the groups sent in the SAML attributes will be "escapetest", "newgroup", and "secondtest":

 

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.