SAP Knowledge Base Article - Public

3598814 - How to add multiple users to a team by SAML mapping automatically

Symptom

How to add multiple users to a team by SAML mapping automatically.

Resolution

Prerequisites:

  • SAML SSO must be enabled. For more information, see Enable a Custom SAML Identity Provider.
  • Can log on with a SAML account that is assigned an administrative role in SAP Analytics Cloud.
  • Custom SAML Identity Provider (IdP) is configured to return one or more SAML user attributes in the SAML assertions that are issued to authenticated SAML users.
  • The team to assign users has been created.

    Solution 1:

    1. From the side navigation, go to  Security >  Teams.
    2. Select the team to assign users to, and then select  (Open SAML Team Mapping).
    3. On the Create SAML Mapping dialog, under Conditions, select "email" as SAML Attribute, select "Equals" as Condition, and enter the emails one by one.
    4. Select Save.

    Solution 2:

    1. From the side navigation, go to  Security >  Teams.
    2. Select the team to assign users to, and then select  (Open SAML Team Mapping).
    3. On the Create SAML Mapping dialog, under Conditions, select "email" as SAML Attribute, select "Equals" as Condition, and enter only one email.
    4. Click  (New Mapping Definition) to add multiple conditions, select "email" as SAML Attribute, select "Equals" as Condition, and enter only one email under each condition.
    5. Choose the Conditions Logic as "OR" to apply to the attributes.
    6. Select Save.

    The behavior of the solutions is the same and there is no limit for the number of conditions in solution 2.

    Keywords

    Role import, IDP, SAML Attribute, SAML Attribute , KBA , LOD-ANA-AUT , SAC Authentication / Login , How To

    Product

    SAP Analytics Cloud 1.0