You need to make the following configuration changes for the transient federations to work from Origin Identity Provider to SP Broker to Target Service Provider.For example, if the Origin Identity Provider is on SAML 1.0 (transient), the SP Broker and the Target Service Provider also must be on transient federation.
Go to Edit > SAML2 > Trusted Providers > (Broker IDP under the Service Providers list) > Authentication Response
Enable the Transient Name ID Format and make it as Default.
Go to Edit > SAML2 > Trusted Providers > (Origin IDP under the Identity Providers list) > Authentication Card > Authentication Request.
Select the Transient Name ID Format.
Go to Edit > SAML2 > Trusted Providers > (Next hop SP under the Service Providers list) > Authentication Response.
Enable the Transient Name ID Format and make it as Default.
Go to Edit> SAML2> Trusted Providers > (Broker IDP under the Identity Providers list) > Authentication Card > Authentication Request.
Select the Transient Name ID Format