1. Log in to the Appspace console.
  2. Click the ☰ Appspace menu, and select Users > SAML Attributes.
  3. On the SAML Attributes dashboard, click the + ADD button to add an attribute.
  4. In the Add Field window, configure the following fields:

    Important
    Please ensure the attribute Property and Input Type is correct and matches the external IdP provider, as these fields can’t be changed once saved.
    • Display Name – Enter the name of the attribute to be displayed.
    • Property – Enter the property of the attribute.
    • Source – Select SAML as the source of the attribute from the drop-down menu.
    • Input Type – Determine the attribute input type, by selecting one of the following options from the drop-down menu.
      • Integer – only numeric characters
      • String – alphanumeric characters
    • Required – Determine if the attribute is required, by switching the toggle switch to the following option:
      • YES
      • NO (default)
    • Visibility – Determine if the attribute is displayed in the user profile, by switching the toggle switch to the following option:
      • VISIBLE (default)
      • HIDDEN
    • Icon – Select an icon for the attribute that is displayed in the user profile.
    • Description – Enter the description of the attribute.
  5. Once done, click Save.
  6. Custom user attributes that are added can be edited or deleted, and are displayed in the Attributes tab in the User Profile of each user who signs in to Appspace using SSO (provisioned with the JIT) credentials.

Configure User Groups with SAML Mapping and Rules

Follow the instructions below to configure each user group with rules for SAML mapping:

  1. Log in to the Appspace console.
  2. Click Users from the ☰ Appspace menu.
  3. Click the ellipsis of the desired user group, and select Edit User Group.
    Note
    If a user group had not been created, or if you wish to user a new user group, follow the instructions in the Create User Group section in the article.
  4. In the Edit User Group window, select Custom Rule from the SAML Mapping drop-down menu.
  5. In the Manage Rules window, click Create Rule to help define and filter external user group membership.
  6. In the Create Rule window, configure the following fields:

    • Rule – Select the following rule from the drop-down menu:
      • Include
      • Exclude
    • Property – Select the SAML attribute property the rule applies to from the drop-down menu.
    • Operator – Define the condition between the attribute property and value from the drop-down menu:
      • Equal
      • Not Equal
      • Contain
      • Not Contain
      • Match 
    • Value – Enter the value of the attribute property that is required.
  7. Once done, click OK.
  8. All users that fit the custom rule created will be displayed. Click Apply to confirm that the selected users will be assigned to the user group.

    Note
    Users that fit the rule, but have yet to accept their user invitations from Appspace, will only be assigned to the user group once they have accepted the invitation.