Skip to main content

Update Claims Mapping Policy in EmpowerID

Claims mapping policies may need to be updated over time to reflect changes in identity data requirements. In EmpowerID, you can update an existing claims mapping policy to add new source or static claims, or remove claims that are no longer needed.

This guide shows you how to:

  • Use the UpdateAzureClaimsMappingPolicy workflow to add new claims to a policy
  • Remove claims either from the policy overview or from within the workflow

All additions are performed through the workflow interface, while deletions can be made directly from the UI or during policy edits.

note
If you haven’t created a claims mapping policy yet, start with the Create Claims Mapping Policy guide.

What You Need Before You Start

RequirementDescription
Workflow AccessYou must have permission to run the UpdateAzureClaimsMappingPolicy workflow.
Policy PermissionsYou must have access to view and modify Claims Mapping Policies.
Existing PolicyA claims mapping policy must exist before you can update it.

Steps to Update Claims in a Mapping Policy

1. Access the Claims Mapping Policy

  1. Navigate to the portal for the Resource Admin app in your environment.
  2. Log in using your credentials.
    note

    If you don’t know the direct URL to Resource Admin, contact your EmpowerID administrator.

  3. From the dropdown menu, choose Applications.
  4. Under Filters, select Claims Mapping Policies.
  5. Search for the policy you want to update.
  6. Click the Details button on the record returned for the policy. Claims Mapping Policy Details Button This opens the Overview screen for the policy, where you can view details and perform actions. Claims Mapping Policy Overview

2. Remove a Claim

You can remove a claim directly from the policy overview or within the claim editing workflow.

Option 1 – Remove directly from the Overview

  1. Click the Remove button next to the claim you want to delete. Remove Claims from App Button
  2. Click Yes when prompted to confirm the removal.
  3. Repeat for any additional claims you want to remove.

Option 2 – Remove within the Workflow

  1. Click the Add/Remove Claims button to launch the UpdateAzureClaimsMappingPolicy workflow. Launch Update Workflow The wizard opens to the Update Claims step with two tabs:
    • Source Claims – For dynamic claims pulled from user, application, resource, or audience attributes
    • Static Claims – For fixed values returned in the token Update Claims Wizard
  2. Select the appropriate tab for the claim type you want to remove (Source Claims or Static Claims)
  3. Click the red trash icon next to the claim you want to delete. Update Claims Wizard Remove Claim
  4. Click Yes when prompted to confirm the removal. Confirm Remove Claim Dialog
  5. Repeat for any additional claims you want to remove.
    tip

    To undo removing a claim before proceeding, click the Undo button for the claim in question. Undo Claim Removal Button

  6. When finished, click Next to proceed to the Summary step.
  7. Review the summary and click Submit to apply the changes or click Back to return to the Update Claims step.
note

Returning to the Update Claims step will clear your entries and require re-entry of all claims.

3. Add Claims

To add source or static claims to the policy:

  1. On the policy overview, click the Add/Remove Claims button to launch the UpdateAzureClaimsMappingPolicy workflow. Launch Update Workflow The wizard opens to the Update Claims step with two tabs:
    • Source Claims – For dynamic claims pulled from user, application, resource, or audience attributes
    • Static Claims – For fixed values returned in the token Update Claims Wizard
note

If the policy does not contain any claims yet, you can fill out the form for the first claim directly. For additional claims, click + Add New Item after each entry.

  1. If this is not the first claim, click + Add New Item. Add New Item

  2. In the appropriate tab, complete the following fields for the claim:

    FieldDescription
    Source Attribute(Source only) Attribute to source the claim value from (e.g., user.city).
    Claim Value(Static only) The constant value to return in the token.
    Claim DescriptionOptional label describing the claim.
    SAML Claim TypeThe SAML URI for the claim.
    SAML Name FormatSAML name identifier format (e.g., unspecified, email).
    JWT Claim TypeThe name of the claim in JWT tokens.

  3. To add more claims, repeat step 2.

  4. When finished, click Next to proceed to the Summary step.

  5. Review the summary and click Submit to apply the changes or click Back to return to the Update Claims step.

note

Returning to the Update Claims step will clear your entries and require re-entry of all claims.