Skip to content

Note for users to use friendly group names over object IDs

Jordan NG requested to merge master-patch-5e74 into master

What does this MR do and why?

This MR is to add a note to the Group Claims section of the Azure AD setup so that users configuring this knows that there may be other options when configuring this field that is more user friendly when they need to configure SAML settings. Using the current settings, when customers go to configure Group Links, they are required to enter an object ID which can be unintuitive and confusing.

Screenshots or screen recordings

Screenshots are required for UI changes, and strongly recommended for all other merge requests.

Screenshot provided by customer who used this setting to use friendly name instead of object IDs.

azure_configure_group_claim

How to set up and validate locally

Numbered steps to set up and validate the change are strongly suggested.

  1. In Azure AD settings, change Group Claims to sAMAccountName.
  2. Navigate to a root group on SaaS.
  3. Go to Settings > SAML SSO
  4. Under Configuration section, click Verify SAML Configuration
  5. Look under the returned payload to see if friendly names populated under group section.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

Merge request reports