Syncing groups between Azure AD and Artifactory
Configure Azure AD SAML SSO with the Artifactory (https://jfrog.com/knowledge-base/how-do-i-configure-artifactory-saml-sso-with-azure-ad/).
This article will help you to sync your SAML groups with Artifactory.
Please follow below steps to sync your SAML groups of the Azure AD provider.
- In the SAML SSO Configuration UI of Artifactory, we will configure the following:
Group Attribute – claim name of “user.groups”
Email Attribute – claim name of “user.mail” (optional)
After mapping group attributes, make sure that the group of the Azure AD provider already exists in the Artifactory with the group name of “Object ID” because the user will be associated only with the groups that exist in Artifactory, the integration will not create new groups.
Create the group with name as “Object Id” in the Groups section of Artifactory.
Please note that this association with the groups is valid only for the current UI session.