I am using ForgeRock AM as the Identity Provider with an ASP.NET Webforms application as the Service Provider. I am doing an IdP initiate SSO, and successfully receiving an assertion on the AssertionConsumerService.aspx page.
However, the SAMLServiceProvider.ReceiveSSO method is returning the username in a different format. This is reflected in the saml:NameID in the attached trace file. Is there a way to get the actual username used in ForgeRock AM?