When Identity Server creates its response for the service provider, it uses the attributes listed on the Attributes page. The response needs to contain the attributes that the service provider requires. If you do not own the service provider, you need to contact the administrator of the service provider and negotiate which attributes you need to send in the response. The service provider can then use these attributes to identify the user, to create policies, to match user accounts, or if it allows provisioning, to create a user accounts on the service provider.
Click Devices > Identity Servers > Edit > [Protocol] > [Service Provider] > Attributes.
(Conditional) To create an attribute set, select New Attribute Set from Attribute Set.
An attribute set is a group of attributes that can be exchanged with the trusted provider. For example, you can specify that the local attribute of any attribute in the Liberty profile (such as Informal Name) matches the remote attribute specified at the service provider.
Specify a set name, then click Next.
On the Define Attributes page, click New.
Select a local attribute.
Optionally, you can provide the name of the remote attribute and a namespace.
Click OK.
For more information about this process, see Configuring Attribute Sets.
To add other attributes to the set, repeat Step 2.b through Step 2.e.
Click Finish.
Select an attribute set
Select attributes from the Available list, and move them to the left side of the page.
The left side of the page lists the attributes you want sent in an assertion to the service provider.
Click OK > OK.
Update Identity Server.