The Guacamole SAML extension appears to support group mapping but I cant get this to work. SAML authentication itself is working.
I have set the saml-group-attribute to: Group in guacamole.properties Within the SAMLResponse I see that groups are being correctly passed; <snip> <AttributeStatement> <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress";> <AttributeValue>mtaylor</AttributeValue> </Attribute> <Attribute Name="http://schemas.xmlsoap.org/claims/Group";> <AttributeValue>Domain Users</AttributeValue> <AttributeValue>IT</AttributeValue> </snip> We are using the mysql extension to store configuration. I have created a test group "IT" and assigned permissions and connections but these are not mapped upon logon. We are using Gucamole version 1.3.0 Could anyone provide assistance with the group mapping? Regards Michael
