You can configure attributes based on the roles you select in the Attribute set field. You can log in to and authenticate based on roles federated in the Origin Identity Provider, Target Service Provider and the Brokering Service Provider configuration.
On the Home page, click Identity Servers > IDP Global Settings > Attribute Sets > [Select Attribute] > Mapping Plus icon.
Select the local attribute name from the list.
Specify the remote attribute name for the selected local attribute.
Click Save.
On the Home page, click Applications > [Select a Cluster] > SAML2 IDP Brokering Application > Attributes.
Click edit icon and select the role from Attribute Set.
Click Done > Save.
On the Home page, click Identity Servers > IDP Global Settings > Attribute Sets > [Select Attribute] > Mapping Plus icon.
Select the local attribute name from the list.
Specify the remote attribute name for the selected local attribute.
Click Save.
On the Home page, click Applications > [Select a Cluster]> [application name] > SAML2 SP Brokering Application > Attributes
Click edit icon and select the role from Attribute Set.
Click Done > Save.
Roles set, attribute configured in origin identity provider, and target service provider are added and mapped in the brokering service provider attribute configuration.
On the Home page, click Identity Servers > IDP Global Settings > Attribute Sets > [Select Attribute] > Mapping Plus icon.
Select the local attribute name from the list.
Specify the remote attribute name for the selected local attribute.
Click Save.
On the Home page, click Applications > [Select a Cluster]> [application name] > Brokering > SAML 2.0 > SAML2 SP Brokering Application > Attributes.
Click edit icon and select the role from Attribute Set.
Click Done > Save.