Skip to content

Instantly share code, notes, and snippets.

@VenkateshKadiri66

VenkateshKadiri66/Trusted Identity Token Issuer Creation on SharePoint

Created December 11, 2017 10:07
Show Gist options
  • Save VenkateshKadiri66/aaaf691a0bcc18dd768ad0edb043679b to your computer and use it in GitHub Desktop.
Save VenkateshKadiri66/aaaf691a0bcc18dd768ad0edb043679b to your computer and use it in GitHub Desktop.
Download ZIP
Raw
Trusted Identity Token Issuer Creation on SharePoint
$cert = New-Object System.Security.Cryptography.x509Certificates.x509Certificate2 ("E:\Kadiri\ADFS_TokenSigning.cer")
### Create SP Trusted Root Authority ###
New-SPTrustedRootAuthority -Name "Token Signing Cert" -Certificate $cert
### Claim Mappings #####
$upnClaimMap = New-SPClaimTypeMapping -IncomingClaimType "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn" -IncomingClaimTypeDisplayName "UPN" -SameAsIncoming
$cnNameMap = New-SPClaimTypeMapping -IncomingClaimType "http://schemas.xmlsoap.org/claims/CommonName" -IncomingClaimTypeDisplayName "Display Name" -SameAsIncoming
### Identity Token Issuer
$realm = "urn:portal:sharepoint"
$signInURL = "https://sts.contoso.com/adfs/ls"
$ap = New-SPTrustedIdentityTokenIssuer -Name "SAML Provider" -description "SAML secured SharePoint" -realm $realm -ImportTrustCertificate $cert -ClaimsMappings $upnClaimMap, $cnNameMap -SignInURL $signInURL -IdentifierClaim $upnClaimMap.InputClaimType
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment