Question 2 Replies 603 Views × Close popover Thrinath Jalamadugu (ThrinathJalamadugu) Accenture Lead System Architect Accenture IN View Profile Send Message ThrinathJalamadugu Member since 2013 3 posts Accenture Posted: October 7, 2016 Last activity: March 24, 2017 Posted: 7 Oct 2016 5:42 EDT Last activity: 24 Mar 2017 4:40 EDT Closed Solved Can pega retrieve a new xml attribute in the SAML response and parse it? Hello, My IdP is going to send an extra xml tag in the SAML response. Can pega parse this extra tag from response? Theoretically, believe pega can do it. Pega can read he the new attribute added in <saml:AttributeStatement>. Its about extending the "Assertion" parse xml rule in Data-SAMLAssertion-AssertionType. class. And modifying pyLoadSAMLAssertion activity to store this new attribute. Will there be any challenges out there or any suggestions? ***Updated by Moderator: Lochan. Removed user added Ask the Expert tag. Apologies for confusion, shouldn't have been an end-user option*** Low-Code App Development Security × Close popover Facebook Twitter Linkedin Email Copy Link Copied! Moderation Team has archived post, learn more × Close popover This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question. Posted: 4 years ago Posted: 7 Oct 2016 12:37 EDT × Close popover Paul Gentile (PaulGentile_GCS) PEGA Sr. Software Solutions Engineer Pegasystems Inc. US View Profile Send Message PaulGentile_GCS PEGA replied to ThrinathJalamadugu If you're on 7.1.7 and you're using "unbounded complex element", you'll need a hfix. Otherwise, you look good to go. Below article has this research and a useful debugging approach. https://pdn.pega.com/support-articles/saml-assertion-schema-incorrect-attributevalue-element Accepted Solution Posted: 4 years ago Posted: 24 Mar 2017 4:18 EDT × Close popover Thrinath Jalamadugu (ThrinathJalamadugu) Accenture Lead System Architect Accenture IN View Profile Send Message ThrinathJalamadugu Accenture replied to ThrinathJalamadugu An update to close the loop. Yes, a custom SAML attribute can be accepted in the SAML token. "Assertion" Parse XML is an available rule and can be extended to support such requirement. In our case, the primary "active directory id" was not part of SAML Attributes (depends on the IdP). So, we had to depend on "SUBJECT" of SAML token.