Hi All,
We came across a situation where we need to implement SAML for Internal and External user groups of our organization. Our Appian environment holds Employee ID as Appian Username for Internal Users and Email ID as Appian Username for external users.
Our Identity Provider might be able to provide both the information, Employee ID and Email ID as Name ID of the Subject.
Our Internal users and external users are placed in 2 different groups and there is a parent group where both the Internal and External groups are member groups. Authentication Group is set to the Parent group as this needs to work for both member groups.
For the above setup, we are aiming to implement SAML Authentication. In Appian, is there a way to dynamically choose the Name ID based on the group the user belong to? For example if the user belongs to internal users group, we need to compare the Employee ID against Appian Username, If the user is from external user group, we need to compare the email ID with Appian Username(as external users doesn't have employee ID)
(One Idea we came across is to create 2 separate SAML Integration for same Identity Provider, However Appian doesn't allow adding same identity provider twice (even if the Authentication group is different))
Please let me know if above details are not fully clear or if more information is required to understand this.
Thanks in advance,
Arjun.
Discussion posts and replies are publicly visible