Symantec Access Management

 View Only
Expand all | Collapse all

Keeping multiple Audience in same SAML AudienceRestriction tag .. will it possible ?

  • 1.  Keeping multiple Audience in same SAML AudienceRestriction tag .. will it possible ?

    Posted Feb 06, 2019 09:16 AM

    Hi ,

     

    We are looking to keep the multiple audience values in same SAML AudienceRestriction tag.

    Currently we are getting like below.

     

    <ns2:Conditions NotBefore="***" NotOnOrAfter="***">
    <ns2:AudienceRestriction>
    <ns2:Audience>abc</ns2:Audience>
    </ns2:AudienceRestriction>
    <ns2:AudienceRestriction>
    <ns2:Audience>abcd</ns2:Audience>
    </ns2:AudienceRestriction>
    </ns2:Conditions>

     

    But we want like below.

     

    <ns2:Conditions NotBefore="***" NotOnOrAfter="***">
    <ns2:AudienceRestriction>
    <ns2:Audience>abc</ns2:Audience>
    <ns2:Audience>abcd</ns2:Audience>
    </ns2:AudienceRestriction>
    </ns2:Conditions>

     

    Will it be possible ? if yes any docs to refer please.

     

    Thanks,

    Raja



  • 2.  Re: Keeping multiple Audience in same SAML AudienceRestriction tag .. will it possible ?

    Broadcom Employee
    Posted Mar 01, 2019 01:57 PM

    Hi Raja,

     

    I don't believe this is possible out of the box and thus would require an AGP (Assertion Generator Plugin, which is custom code written with the Federation SDK).

     

    -Pete