locked
Custom Claim Rule RRS feed

  • Question

  • I am setting up a new SSO to a vendor and they are requesting that I send employeeID+word (ie: 1234word). I have setup the LDAP attribute as a claim to send employeeID as "username" (per their request) and tested that I can get in because they have setup a test account with just my employeeID to verify connectivity. So now I know that they need the outgoing claim rule to be sent as username with the employeeID+word attribute but I can't figure it out for the life of me. Any suggestions?
    Monday, May 14, 2018 3:43 PM

Answers

All replies

  • To add a string, use:

    c:[type == "xxx"] => issue(type = "yyy", value = c.value + "word");

    Thursday, May 17, 2018 8:11 PM
  • I have tried that with no luck. I get "Login Denied: Assertion conditions are not valid."
    Monday, May 21, 2018 3:41 PM
  • Please provide more details.

    The error you get is obviously from the RP not from ADFS.

    What does the RP need? And what did you actually send?

    Please copy/paste requirement and your rules here.


    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Tuesday, May 29, 2018 12:39 AM