Verify SAML Auth0 Attribute Mapping
Overview
Clients can send additional meta data about their users to track on our end. The values for family_name and given_name are not always sent by default, but if the client has configured their identity provider to send these values they should also show up in the CRM and the CSM should be able to see them in the user profile.
Steps
Follow these steps to verify if the attribute mapping is working correctly:
-
Log into the Auth0 production account.
-
Go to Authentication -> Enterprise -> SAML (or OpenId Connect)
-
Find the connection for the organization in question and copy the name
-
Go to User Mangagement -> Users in the main navigation
-
Select Search by: Connection from the drop down and insert the connection name
-
If they have had successful logins there should be users in the search result
-
Select a user and scroll down to the Identity Provider Attributes
-
If the provider mapped for example
family_namethis field should have a value now
Expected Results
When attribute mapping is properly configured:
- The Identity Provider Attributes section will contain the mapped values
- Common attributes include
family_name,given_name,email, etc. - These values should match what the customer's IdP is sending
- The same data should be visible in the CRM system
Troubleshooting
If attributes are not appearing:
- Verify the customer has configured their IdP to send these attributes
- Check the SAML assertion/response to confirm the attributes are being sent
- Ensure the Auth0 connection has the correct attribute mapping configuration
- Contact the customer to confirm their IdP settings