Describes the SAML 2.0 parameters for ADFS (Active Directory Federation Services) as an identity provider.
The following table describes the SAML 2.0 parameters for ADFS, when adding a new instance in Cortex XSOAR:
Attribute | Description |
|---|---|
Name | A name for the integration instance. |
Service Provider Entity ID | The URL of your Cortex XSOAR server (also known as an ACS URL). In the format: https://yourdomain.com/saml |
IdP metadata URL | ADFS URL+ /federationmetadata/2007-06/federationmetadata.xml |
IdP SSO URL | ADFS URL+ /adfs/ls/idpinitiatedsignon.aspx |
Attribute to get email | Attribute in your IdP for the user's email address. |
Attribute to get user name | Attribute in your IdP for the user's user name. |
Attribute to get first name | Attribute in your IdP for the user's first name. |
Attribute to get last name | Attribute in your IdP for the user's last name. |
Attribute to get groups | Attribute in your IdP for the groups of which the user is a member. |
Default role | Role to assign to the user when they are not a member of any group. Users can be assigned to a default role at Cortex XSOAR in case there is no mapping between their AD group membership and a Cortex XSOAR server role. |
Service Identifier (ADFS) | The ADFS relay identifier which Cortex XSOAR will redirect the user for SSO first login. |