Re: ADFS Web Server retrieving incorrect User name from ADFS resource server

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Enrico <nricko@xxxxxxxxx>
Date: Thu, 24 Jan 2008 16:21:33 -0800 (PST)

Joe,

Currently for the account partner configuration, we are using the
Resource accounts exist for some users (prefer groups in token).
On the account federation side, I choose to send all domain suffixes
to the resource federation server.
Also for the Active directory group claims extraction properties on
the resource federation side, I have my TokenAppClaim mapped to the AD
group which has access to the application (OpenScape Users).

The user joann.carter@xxxxxxxxxx does exist in my resource domain and
I am able to log into the application if I choose to log in via the
resource federation acnos.com realm. Ideally I would like to use the
shadow accounts option, as the exact user UPN exists in each domain.

Please let me know if I could provide you with more information or
files.

Thanks in advance,

Enrico

.

Follow-Ups:
- Re: ADFS Web Server retrieving incorrect User name from ADFS resource server
  - From: Joe Kaplan

References:
- ADFS Web Server retrieving incorrect User name from ADFS resource server
  - From: Enrico
- Re: ADFS Web Server retrieving incorrect User name from ADFS resource server
  - From: Joe Kaplan

Prev by Date: Re: ADFS Web Server retrieving incorrect User name from ADFS resource server
Next by Date: Re: Child domain or Domain tree
Previous by thread: Re: ADFS Web Server retrieving incorrect User name from ADFS resource server
Next by thread: Re: ADFS Web Server retrieving incorrect User name from ADFS resource server
Index(es):
- Date
- Thread

Relevant Pages

Re: ADFS and Web SSO Scenario
... you need to use a mapping scheme to map the external users to some ... group claims map to groups in the resource federation AD and have a token ... UPN that matches the UPN of a user on the resource federation AD. ... If you look in the account partner's properties, ...
(microsoft.public.windows.server.active_directory)
Re: Cannot import resource into enterprise - invalid windows account
... Using an account of administrator in PWA, ... the Enterprise Resource Pool. ... Enter at least, the resource name, windows account in the format ... Create a different set of users from User1, 2, etc to ...
(microsoft.public.project.pro_and_server)
Re: ADFS Web Server retrieving incorrect User name from ADFS resource server
... resource account mapping? ... login process by changing the UPN mappings in the UPN claim configuration ... <Transform Algorithm="http://www.w3.org/2001/10/xml-exc- ...
(microsoft.public.windows.server.active_directory)
RE: Verifying E-Mail Addresses
... could be a person's work email, their AO_Hell account, etc. ... ... such a resource, instead of how to secure it. ... mastery of a subject or superhuman command of the English language, ... correspondence with the sender upon realizing your own ignorance, ...
(Security-Basics)
Re: Cluster Resource replacing physical server
... regardless of the status of the AD replication. ... Create the virtual computer account manually if the Cluster service account ... Then connect to cluster administrator to Enable Kerberos on the network name ... Create cluster resource ...
(microsoft.public.sqlserver.clustering)