For SAML applications, can we send other values for the NameIdUserstoreAttribute?

(Doc ID 2371608.1)

Last updated on MARCH 14, 2018

Applies to:

Identity Cloud Service (IDCS) - Version N/A to N/A
Information in this document applies to any platform.

Goal

With a defined a SAML application in IDCS, the requirement is to specify a value other than userName or emails.primary.value as the nameIdUserstoreAttribute.  Specifically, they require the ability to use AD attribute ImmutableID.
 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms