ADFS 2.0 claim rules for consuming SAML CA Site minder assertion

423 views Asked by At

I am using ADFS 2.0 as a service provider and CA Site Minder as an IDP which issues SAML attributes in the form of:

            <ns1:Attribute AttributeName="EmailAddress" AttributeNamespace="http://schemas.xmlsoap.org/claims">
                <ns1:AttributeValue>[email protected]</ns1:AttributeValue>

does anyone know how to setup a claim rule to consume this attribute In ADFS?

I have tried the following as a custom claim but it didn't work:

c:[Type == "http://schemas.xmlsoap.org/claims/EmailAddress"] => issue(claim = c);

Any help?

Thanks

1

There are 1 answers

3
rbrayb On

Did you setup up pass-through rules for ADFS and your RP?

ADFS will only pass-through the claims you tell it to,

The normal claims-rules won't work (i.e. the LDAP ones) because ADFS is not the IDP in this case.'