You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Attribute mapping for Social IDP

edited Aug 21, 2024 12:24PM in Applications Security 3 comments

Summary:


We added the IDP using Open ID connect using Social IDP in OIA IAM Domain.

When we are trying to login with IDP getting below error.

As per below document it says,

The error was occurring since IDCS by default, not only expects email to be part of the UserInfo response from the IDP but also uses email as the identifier for user accounts ("username" attribute) for OIDC flows.

By default mapping is

IDP (email) --> username (IDCS). --> It is excepting "email" attribute and mapping as "username" for IDCS.

In our situation, the username is not an email address, instead it is a person number provided by Fusion.

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!