Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,469 questions
Create a REGEX with EntraID to extract informations from group with multiples transformations for SAML Token
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 10%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDR%3C/text%3E%3C/svg%3E)
Denis R
10
Reputation points
Hello,
We have a group in our Azure AD we want to extract the end to send in a SAML Token as attribute.
Let say we have this group: GRP-AppName-RoleName1-SubRoleName2
We wan to extract what is after "GRP-AppName-" --> RoleName1-SubRoleName2
And also put the result in lowercase and replace the - with a .
Meanning we want the end result to be rolename1.subrolename2
We dit the following test with RegexReplace()
But the result is RoleName1-SubRoleName2 and we don't know how to put the result in lowercase and replace the - with .
Currently we are doing this with our current SAML Identity Provider Siteminder with the following REGEX
TRANSLATE(LCASE(ENUMERATE(memberOf,AFTER(RDN(STRING(%0)),'GRP-AppName-',TRUE))),"-",".")
How can we achieve this with the EntraID Regex?
Thanks
{count} votes
-
James Hamil 24,486 Reputation points Microsoft Employee2024-09-20T21:09:07.75+00:00 Hi @Denis R , please try this and let me know if it works:
RegexReplace(ToLower(RegexReplace(memberOf, "^.*GRP-AppName-", "")), "-", ".")
Sign in to comment
Sign in to answer