ADFS Claim rule

  • 70 Views
  • Last Post 3 weeks ago
sunny4422000 posted this 4 weeks ago

Hi All

 

Just need some help on setting up a claim rule for ADFS

Application requirement is to use EmployeeNumber and AD Password for Authenticating user against ADFS relaying party.

We have EMployeeNumber Attribute in place for the user. However when we set up Claim rule as below

LDAP Attribute

EmployeeNumber ----- EmployeeNumber

The application fails to passthrough the authtication.

Created below rule

rule 1:

Employeenumber ---- employeenumber

Transform Rule

Employeenumber ---- to NameID

 

With the Above, users are able to access the application when their on domain (Corporate Network). However, unable to access the application off the domain

Can any one suggest the best way to achieve this?

My environment - ADFS 2012R2

Application - Uses SAML2.0 

 

Thanks

odroubi posted this 3 weeks ago

Did you configure the claims provider to pass that attribute? (Acceptance transform rule)

 

I think you need to ensure that the employee ID is picked up so it can be processed by the relying party


Omar

 

show

Close