strings/SAMLIdPHRD.xml
|
<ClaimsProvider xmlns="http://schemas.microsoft.com/online/cpim/schemas/2013/06">
<Domain>{{{0}:domainName}}</Domain> <DisplayName>{{{0}:displayName}}</DisplayName> <TechnicalProfiles> <TechnicalProfile Id="{0}-SAML"> <DisplayName>{{{0}:displayName}}</DisplayName> <Description>Login with your SAML identity provider account</Description> <Protocol Name="SAML2"/> <Metadata> <Item Key="PartnerEntity">{{{0}:metadataUrl}}</Item> <Item Key="WantsSignedAssertions">true</Item> <Item Key="ResponsesSigned">false</Item> <Item Key="ClaimTypeOnWhichToEnable">idp</Item> <Item Key="ClaimValueOnWhichToEnable">{{{0}:domainName}}</Item> </Metadata> <CryptographicKeys> <Key Id="SamlMessageSigning" StorageReferenceId="B2C_1A_{0}SigningCert"/> </CryptographicKeys> <OutputClaims> <OutputClaim ClaimTypeReferenceId="issuerUserId" PartnerClaimType="assertionSubjectName" /> <OutputClaim ClaimTypeReferenceId="givenName" PartnerClaimType="first_name" /> <OutputClaim ClaimTypeReferenceId="surname" PartnerClaimType="last_name" /> <OutputClaim ClaimTypeReferenceId="displayName" PartnerClaimType="http://schemas.microsoft.com/identity/claims/displayname" /> <OutputClaim ClaimTypeReferenceId="email" /> <OutputClaim ClaimTypeReferenceId="identityProvider" DefaultValue="{{{0}:domainName}}" /> <OutputClaim ClaimTypeReferenceId="authenticationSource" DefaultValue="socialIdpAuthentication" /> </OutputClaims> <OutputClaimsTransformations> <OutputClaimsTransformation ReferenceId="CreateRandomUPNUserName"/> <OutputClaimsTransformation ReferenceId="CreateUserPrincipalName"/> <OutputClaimsTransformation ReferenceId="CreateAlternativeSecurityId"/> <OutputClaimsTransformation ReferenceId="CreateSubjectClaimFromAlternativeSecurityId"/> </OutputClaimsTransformations> <UseTechnicalProfileForSessionManagement ReferenceId="SM-Saml-idp"/> <EnabledForUserJourneys>OnClaimsExistence</EnabledForUserJourneys> </TechnicalProfile> </TechnicalProfiles> </ClaimsProvider> |