The exact attribute mappings depend on the identity provider (IdP) your organization is using. For instance, the expected naming required for a generic Security Assertion Markup Language (SAML) is different from the naming required for Active Directory Federation Services (ADFS).
During the setup steps, you'll see instructions related to the specific IdP you use, as well as the required attribute naming conventions.
The following are the minimum attributes that should be passed:
-
idp_id
: User's unique identifier, assigned by the directory provider. Please note that different directory providers use different ID formats. -
first_name
: User's first name -
last_name
: User's last name -
email
: User's email address
These attributes must be mapped following the setup steps that have been shared in Maze for your specific identity provider.
If you are setting up a generic SAML connection, your SAML response should include id
, email
, firstName
, and lastName
attributes.
If you are setting up a connection for another IdP, you should use the setup steps for your specific identity provider. For more information, please refer to the complete list of all supported identity providers and respective setup instructions on the Integrations page of the WorkOS documentation.