How do I configure an OIDC IdP in a way Access properly extracts a user's name?

What is the name of the domain?

example.com

What is the issue you’re encountering

Even though the ID Token contains a valid name property, Access ignores this for an OIDC IdP

What are the steps to reproduce the issue?

  • Setup a generic OIDC provider in Access
  • Ensure the ID token it returns contains a valid name property
  • Cloudflare Access uses the mailbox name (part before ‘@’ in the email address) as name, and displays ‘None’ in the Access Logs for the name field

Screenshot of the error

In the Cloudflare settings I can modify the email claim name:

But I am looking for the counterpart regarding a user’s name (which works fine with e.g. the EntraID provider).

Im the Access Logs, None is displayed for the Name: