Okta Group SAML assertion to Application Groups/ Roles

kerry · December 17, 2019, 9:33pm

Apologize if this has been covered before, but I cannot seem to find the example I’m looking for. We have a single SAML application that has multiple roles defined on the application side, and I want to map Okta Groups to these roles within the application.

I’ve used the following conditional expression successfully - but it only covers (2) possible groups:

[Condition] ? [Value if TRUE] : [Value if FALSE]

Can someone help advise as to how I could map ~15 groups in Okta to ~15 groups/ roles on the application side? Appreciate any insight you can offer here.

dragos · December 18, 2019, 4:40am

Hi @kerry

You can create a custom script to inject the groups inside the SAML assertion using SAML Assertion Inline Hook.

system · January 23, 2024, 7:40pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.

Post		Replies	Views
Need to pass a substring of Okta groups name on SAML assertion Questions	2	3467	August 12, 2021
How to get user's groups in the SAML assertion SAML	4	5805	November 4, 2019
Admin is not assigned to this app instance from okta for group access SAML	2	74	August 25, 2024
Inbound SAML Group processing of role CSV Attribute values SAML saml	3	3741	January 25, 2024
Which groups are included in a group attribute statement Questions	3	3211	April 30, 2021

Okta Group SAML assertion to Application Groups/ Roles

Related topics