Auto-Assign Groups By Email Rules (SSO Edition)

You might want to automatically assign reader groups based on a readers' email address. For example, we might want to assign all readers with "@knowledgeowl.com" email addresses to a special Owls Only reader group.

If we're using SSO, we can do this using Custom attribute map rules in Security and access > Single sign-on > SAML attribute map tab.

To set up a Custom attribute map rule to automatically assign readers to groups based on an email address:

1. Go to Security and access > Single sign-on.
2. Select the SAML Attribute Map tab.
3. Copy the IdP attribute name for Username / email under SAML attribute map.
   • If you don't have an email address in Username / Email, go to the SAML settings tab and check the box to Enable debug mode to troubleshoot issues, Save, and try logging in. Debug mode will show you the IdP attribute names and values being passed over from your IdP.
4. Scroll down to Custom attribute map rules. 
5. Select + Create New Rule. The Create Advanced SAML Map Rule modal opens for you to define the rule.
6. Enter the IdP attribute name that includes the email address.
7. In the IdP attribute value matching type section, select Regex pattern.
8. Copy the code below and paste it into the IdP value regex pattern:

   .*\@knowledgeowl([\.])com

9. Replace knowledgeowl with your email domain (and com with your domain ending, if it's not a .com!). So, for example, if our email domain was owlmazing.net, we would use:

   .*\@owlmazing([\.])net

10. Select Reader Groups from the Reader attribute dropdown.
11. Start typing to select the reader group(s) to which you want to assign any SSO readers with matching email addresses. Your configuration should look something like this:
    Sample custom map rule for email domain
    
12. Once you've finished adding groups and verified that all information is correct, select Create Rule.
    
13. Now any readers who log in with matching email addresses should be automatically assigned to the selected reader group(s).