Microsoft 365 Attribute Mapping - PingOne for Enterprise

Page created: 2 Dec 2020 |

Page updated: 7 Jan 2022

| 1 min read

Product PingOne for Enterprise Administration User task Product documentation Content Type Administrator Audience IDaaS Deployment Method Single Sign-on (SSO) Capability Managed service provider

PingOne automatically populates required SAML attributes.

For Microsoft 365, the required attributes are:

subject: maps to the userPrincipalName Active Directory attribute.
guid: maps to the objectGUID Active Directory attribute.
Note: Microsoft has updated the default sourceAnchor attribute to use ms-DS-consistencyGUID by default. To determine which option is best for your organization, see Azure AD Connect: Design concepts in the Microsoft documentation.

To add an additional optional attribute, click Add new attribute.
In the Application Attribute field, enter the attribute name as it appears in the application.
In the Identity Bridge Attribute or Literal Value field, choose one of the following:
- To map to the application attribute: Enter or select a directory attribute.
- To assign to the application attribute: Select As Literal, then enter a literal value.
To create advanced attribute mappings, click Advanced.

For more information, see Create advanced attribute mappings.

Click Continue to Next Step.