To authenticate a user, IBM SVA sends an authentication response to Keycloak containing various user attributes, such as the first name, last name, phone number, or email address. Keycloak then maps this user information to the attributes of the access token that is generated and sent back to clients.
Procedure
Log in to the IBM SVA Administration dashboard as an administrator.
Navigate to Application and then select your SAML 2.0 application.
Click the Settings icon to the right of your application name.
Select the Sign-on tab.
In the Attribute mappings area, select the Send all known user attributes in the SAML assertion check box.
Configure new attributes as described in the following table:
