Hi All


Just need some help on setting up a claim rule for ADFS

Application requirement is to use EmployeeNumber and AD Password for Authenticating user against ADFS relaying party.

We have EMployeeNumber Attribute in place for the user. However when we set up Claim rule as below

LDAP Attribute

EmployeeNumber ----- EmployeeNumber

The application fails to passthrough the authtication.

Created below rule

rule 1:

Employeenumber ---- employeenumber

Transform Rule

Employeenumber ---- to NameID


With the Above, users are able to access the application when their on domain (Corporate Network). However, unable to access the application off the domain

Can any one suggest the best way to achieve this?

My environment - ADFS 2012R2

Application - Uses SAML2.0