Returning SAML authentication information to Service Provider

Onegini IdP can be configured to returned additional authentication information to Service Providers.

Currently, following attributes can be returned:

  • AssertionID,
  • AuthnContextClassRef

Setup

Those attributes are strictly connected with external identity providers that are based on SAML, so configuration can be found while editing SAML identity provider. While editing identity provider:

  • go to section Authentication, subsection Authentication information
  • add a new mapping by button Add mapping
  • select Authentication response item, which is one of the 2 supported attributes
  • set Attribute sent to service provider which is attribute name returned to Service Provider