BUG

First and last name values are not saved to the user profile when logging in with a SAML enterprise account

Last Published: April 25, 2020

Description

When logging in to ArcGIS Online or ArcGIS Enterprise 10.6.1 or earlier using a Security Assertion Markup Language (SAML) enterprise account, the user's first and last name values are not saved to the user's profile. The SAML assertion response sent from the Identity Provider contains the user's first and last name values in the 'givenname' and 'surname' attributes. However, only the user's first name is set, while the last name remains empty.

Cause

This is a known issue (BUG-000097243).

Workaround

To set a user's first and last names, configure the Identity Provider (IDP) to send the value of the user's display name (first name followed by last name) in the 'givenname' attribute.

The SAML assertion response sent by the IDP contains the 'givenname' attribute, as shown below:

<Attribute Name="givenname">
    <AttributeValue>FirstName LastName</AttributeValue>
</Attribute>

For instructions on configuring the attributes returned in the SAML assertion response, refer to your IDP documentation.

Article ID:000018927

Software:
  • ArcGIS Online
  • Portal for ArcGIS

Get help from ArcGIS experts

Contact technical support

Download the Esri Support App

Go to download options

Related Information

Discover more on this topic

Esri Community

Search for related information

Training

Find training related to this topic

ArcGIS Ideas

Explore ideas and give feedback