ADFS2.0 Claim Rules regarding Active Directory Groups, Sharepoint Roles for User Profile Service RRS feed

  • Question

  • I have been tasked by a customer to setup SharePoint 2010 with ADFS2.0 as our Identity provider. My customer has requested the development of a custom claims provider to be able to provide resolution of both User Entities as well as Domain Groups synchronized into SharePoint as Roles via the User Profile Service.

    While examining the Claim Runt options in ADFS2.0, it is apparent that there is some way of mapping a LDAP Attribute to and Outgoing Claim Type:

    What LDAP Attribute Correlates to the Active Directory Group?

    Addioonally. is it possible to search for a Claim Type of Group within SharePoint's People picker, this will probably take custom code, for groups once the Claim for AD Groups is set up and the User Profile Service has successfully completed it's synchronization?

    Any input on my questions would be appreciated!

    Thanks in advance

    try { wakeUpAndGoToWork(); } catch (IFeelBetterAtHomeException ex) { sleep(); }
    Thursday, October 13, 2011 7:57 PM