What information in the SAML Assertion is used by TIBCO ActiveMatrix Policy Director for Authorization?
Article ID: KB0090817
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix Policy Director | - |
| Not Applicable | - |
Description
Resolution:
Policy Director uses the value for the SAML attribute named 'roles' for authorization. A sample 'roles' Attribute element from a SAML 2.0 Assertion is shown below:
<saml:Attribute Name="roles" NameFormat="http://xmlns.tibco.com/2008/10/saml">
<saml:AttributeValue xsi:type="xs:string">group1</saml:AttributeValue>
<saml:AttributeValue xsi:type="xs:string">group2</saml:AttributeValue>
</saml:Attribute>
Policy Director uses the value for the SAML attribute named 'roles' for authorization. A sample 'roles' Attribute element from a SAML 2.0 Assertion is shown below:
<saml:Attribute Name="roles" NameFormat="http://xmlns.tibco.com/2008/10/saml">
<saml:AttributeValue xsi:type="xs:string">group1</saml:AttributeValue>
<saml:AttributeValue xsi:type="xs:string">group2</saml:AttributeValue>
</saml:Attribute>
Issue/Introduction
What information in the SAML Assertion is used by TIBCO ActiveMatrix Policy Director for Authorization?
Feedback
Yes
No
Powered by
