AWS Certified Solutions Architect - Professional (#163)

What is a possible reason you would need to edit claims issued in a SAML token?

The NameIdentifier claim cannot be the same as the username stored in AD.
Authentication fails consistently.
The NameIdentifier claim cannot be the same as the claim URI.
The NameIdentifier claim must be the same as the username stored in AD.