DocumentationAPI ReferenceRelease Notes
Documentation
Start typing to search…

Identity providers | PS Pathfinder

More information on the Password Safe application

If SAML group claims are configured correctly for the IDP, Password Safe respects those and provisions users into groups (provided they exist). If you are logged into Pathfinder, go to https://app.beyondtrust.io/api/auth/userinfo to inspect the group names coming in on the SAML assertion claim. That user should be placed in that list of groups when they access Password Safe assuming a matching group name is already created in Password Safe Configuration.

In the example below, the group created in Password Safe is the same group name coming through the SAML claim. Any user logging into Pathfinder via SAML, will be added to the group in Password Safe.

Updated 3 months ago

©2003-2026 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.