End-of-Life (EoL)

SAML 2.0 Azure Parameters

Describes the SAML 2.0 parameters for Azure as an identity provider.
The following table describes the SAML 2.0 parameters for Azure, when adding a new instance in Cortex XSOAR:
Attribute
Description
Name
A name for the integration instance.
Service Provider Entity ID
The URL of your Cortex XSOAR server (also known as an ACS URL). In the format:
https://yourdomain.com/saml
Idp metadata URL
URL of your organization’s IDP metadata file. You can copy this from the
App Federation Metadata URL
in the
SAML Signing Certificate
in Azure.
IdP metadata file
Your organization’s IdP metadata file. You either need to add the Idp metadata URL or the file.
IdP SSO URL
The URL of the IdP application that corresponds to Cortex XSOAR. You can copy this from the
Login URL
field in the
SAML Signing Certificate
section.
Attribute to get username
Attribute in your IdP for the user name. Value:
nameIdentifier
Attribute to get email
Attribute in your IdP for the user's email address. Value:
Email
Attribute to get first name
Attribute in your IdP for the user's first name. Value:
FirstName
Attribute to get last name
Attribute in your IdP for the user's last name. Value:
LastName
Attribute to get phone
Attribute in your IdP for the user's phone number. Value:
Phone
Attribute to get groups
Attribute in your IdP for the groups of which the user is a member. Value:
memberOf
Groups delimiter
Groups list separator. Value:
“,”
Default role (for IdP users without groups)
Role to assign to the user when they are not a member of any group. For example,
Analyst
.
RelayState
Only used by certain IdPs. If your IdP uses relay state, you need to supply the relay state.
Use system proxy settings
Select the check box to use proxy settings.
Compress encode URL (AFDS)
(
Manadatory
) Select the check box to compress encode URL (AFDS). If not, you may receive a
Decoding Flat
error during connection.
Service identifier (AFDS)
Add the
appid
value, which can be found at the end of the IDP metadata URL. For example,
https://login.microsoftonline.com/934a6d32-9550be/federationmetadata/2007-06/federationmetadata.xml?appid=b0331331-f15b-4a32-9f48-19158beb0340
.
Do not map SAML groups to Cortex XSOAR roles
SAML groups are not mapped to Cortex XSOAR roles. Default roles are assigned and you can select them later.

Recommended For You