Customer is running AM 4.2.1.


1. A user already exists in the userstore that AM uses
2. User authenticates with SAML2 against a remote IDP
3. The remote IDP returns 2 attributes (A and B) in the SAML response
4. AM matches the user on attribute A
5. AM should then write attribute B to the user in the user store

How would i do this?

I have got it working when doing JIP (Just in time provisioning). Under User Identification -> Provisioning settings -> Required attributes -> added attribute B. So in this case the user was not matched on attribute A, and then a user object is created, also with attribute B.

So the problem is, how do i update existing, matched users, with attribute B?

Thanks in advance,