1. Automox
  2. Configuring Automox
  3. Account & Permissions

How to Configure Entra ID SAML to Use UPN as the Email Address

Avatar
Brendan
Updated:

Step 1: Open the SAML Claims Configuration

  1. Sign in to the Microsoft Entra admin center.

  2. Navigate to Enterprise applications.

  3. Select your Automox SAML application.

  4. Go to Single sign-on.

  5. Under Attributes & Claims, click Edit.

Step 2: Set the Email Address Claim to UPN

  1. In the Additional claims section, locate the claim:

    http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

  2. Click Edit (or Add new claim if it does not exist).

  3. Configure the claim with the following values:

    • Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

    • Source attribute: user.userprincipalname

  4. Select Save.

Step 3: Validate the Configuration

  1. Assign a test user that does not currently exist within Automox to the application in Entra.

  2. Initiate a test SAML sign-in from My Apps in Entra.

  3. Confirm the new user account within Automox possesses the email address as the user’s UPN.

Result

The SAML assertion now sends the user’s UPN as the value for the emailaddress claim, ensuring consistent identity and email mapping in the service provider.

Articles in this section

See more
Was this article helpful?
0 out of 0 found this helpful