Due to the many different IdP Solutions in the market implementing the SAML2 protocol, we have compiled a list of the necessary attributes required to be exposed over your respective IdP in order for successful federation with ClickView.
LDAP Attribute |
SAML2 Attribute |
Email Address |
<Attribute name="urn:oid:0.9.2342.19200300.100.1.3" id="email"/> |
Given Name |
<Attribute name="urn:oid:2.5.4.42" id="givenName"/> |
Display Name |
<Attribute name="urn:oid:2.16.840.1.113730.3.1.241" id="displayName"/> |
Member Of |
<Attribute name="urn:oid:1.2.840.113556.1.2.102" id="memberOf"/> |
First Name or cn (Common Name) |
<Attribute name="urn:oid:2.5.4.3" id="cn"/> |
Sn or Surname |
<Attribute name="urn:oid:2.5.4.4" id="surName"/> |
NOTE: The claim rules described above are the minimum required claim rules for the basic user identification, however for sending any additional attributes for the purpose of campus/school/institution identification, additional attributes can be exposed and configured accordingly.
EXAMPLE:
ExtensionAttribute1 |
<Attribute name="ExtensionAttribute1" id="ExtensionAttribute1"/> |
In this example, the claim rule for the attribute 'ExtensionAttribute1' can be configured for the user location, i.e. the value of this attribute can be: "ExtensionAttribute1: North Campus".
If you are not sure of this, please contact ClickView Support for further guidance prior to commencing the SSO setup.
Submitting your information
To start a new onboarding form, please click SSO Onboarding form,otherwise please continue with the form if you are already in the process of completing.