Manage SAML Attribute Names

Overview

Within the Student Self-Service application, you can configure user-friendly names for data items used in SAML single sign-on. These names need to match what has been configured in OCI IAM. For more details, see SAML Attributes Required for Authentication.

Manage SAML Attribute Names

Use this feature to assign user-friendly names to SAML Attribute Data Items. Here are the delivered data items with the corresponding default attribute names (labeled Attribute Names or Friendly Names):

Data Item	Attribute Name or Friendly Name
First Name	FirstName
Last Name	LastName
Email	EmailAddress
Group membership	Roles
Phone	PhoneNumber
External ID	StudentID

The studentID attribute is a custom schema attribute that Student Financial Aid (SFA) adds to your identity domain schema when you provision the SFA environment for the first time. Make sure that this attribute:

Is populated with a student’s ID so that a student can successfully log in to Student Portal.
Is populated with at least one student ID so that a guest user can successfully log in.
Is of type String Array and must be of this type when included in the assertion from an identity provider (IDP).
Is presented in a comma-separated format: <studentID1>,<studentID2>, and so on.

When you use an external IDP with OCI IAM, you can use just-in-time provisioning to populate and update the attributes and group memberships of a given user. To facilitate this process, the attribute values that are included in the SAML assertion from the external IDP and consumed by OCI are used. You can also map attributes and groups with different source values to the corresponding targets that are listed in the aforementioned attribute tables.

Manual Processing Steps

Student Self-Service Sign In

The application requires a Self-Service User Type of Admin to access Settings.

Sign into Student Self-Service as an Admin.
Navigate to Settings > SAML Attribute Name Mapping.
Select the data item to modify.
Enter an attribute name or friendly name.
Click Save.