You can configure attributes based on the roles you select in the Attribute set field. You can log in to and authenticate based on roles federated in the Origin Identity Provider, Target Service Provider and the Brokering Service Provider configuration.
Click Devices > Identity Servers > Shared Settings >Attribute Sets > Mapping >New.
Select the local attribute name from the list.
Enter the remote attribute name for the selected local attribute.
Click OK.
Click Devices > Identity Servers > Edit > SAML 2.0 > Trusted Providers > (Broker Identity under the Identity Providers list) > Configuration > Attributes.
Select the role from Attribute set.
Using the arrows, map the attributes in Send with Authentication and Available List.
Click Apply to map the set role and attribute of the origin Identity Provider.
Click Devices > Identity Servers > Shared Settings >Attribute Sets > Mapping >New.
Select the local attribute name from the list.
Specify the remote attribute name for the selected local attribute.
Click OK.
Click Devices > Identity Servers > Edit > SAML 2.0 > Service Providers > (Broker Identity under the Service Providers list) > Configuration > Attributes.
Select the role from Attribute set.
Map the attributes in Send with Authentication and Available List.
Click Apply.
Roles set, attribute configured in origin identity provider, and target service provider are added and mapped in the brokering service provider attribute configuration.
Click Devices > Identity Servers > Shared Settings >Attribute Sets > Mapping > New.
Select the local attribute name from the list.
Enter the remote attribute name for the selected local attribute.
Click OK to add the remote attribute name.
Click Devices > Identity Servers > Brokering or click Devices > Identity Servers > Edit > SAML 2.0 > Service Providers > (Broker Identity under the Service Providers list) > Configuration > Attributes.
Select the role from Attribute set.
Using arrows, map the attributes in Send with Authentication and Available List.
Click Apply to set the role and configure the attribute mappings.