Persistent NameID attribute does not appear to be released.

Mathis, Bradley bmathis at
Wed Apr 8 12:43:48 EDT 2020

Hi Steve,    Ah I see what you mean.. the subject of my email I realize
wasn't a good description.  This is probably due to my lack of
understanding.... I guess what I'm expecting to see is the Attribute
"BeyondTrustUsername"  being released .... as that is what the SP is trying
to MAP to username.   As you can see in the SAML trace "uid" is being
released  if I try to have the SP map their username to "uid"... it doesn't
recognize it .. I was thinking it didn't recognize "uid" since it wasn't a
persistent nameid attribute .....which is why I created the
"BeyondTrustUsername" attribute. .. which does not appear to be released.

Thanks for your input  and patience with my explanations.  I'm fairly
certain I'm confusing some with my incorrect use of terminology and making
inaccurate assumptions.   I must be misunderstanding how the NameId format
and release of attributes actually work.   Any other input is appreciated.

Brad Mathis
IT Systems Architect
Infrastructure Services - Applications
Pima Community College
bmathis at

On Wed, Apr 8, 2020 at 8:57 AM Mak, Steve <makst at> wrote:

> It's right here:
> <saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="
>" SPNameQualifier="
> --
> For Consortium Member technical support, see
> To unsubscribe from this list send an email to
> users-unsubscribe at
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list