Mapping SSO_STS roles to Spectrum Technology Platform roles
When you configure Spectrum™ Technology Platform to use AD FS STS or AD FS SSO for authentication, by default, the role values must match the Spectrum™ Technology Platform role names, exactly in order, for the role to be granted. For example, to grant the designer role, the role you specify must be "designer."
You can map non-matching SSO_STS role values to an existing Spectrum™ Technology Platform role name. You can also map an SSO_STS role value with the same name as a Spectrum™ Technology Platform role to a different role. For example, one of the built-in roles is "designer." If you have an SSO_STS role value that is also named "designer," but you want it to map to another role, you could create a role map.
To map an SSO_STS role value to an existing Spectrum role: