Created
November 7, 2014 12:35
-
-
Save iogbole/4464c44f5a2e4ed6b52a to your computer and use it in GitHub Desktop.
Yammer ADFS relying party and claims rule
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Modification of Alex's script to use SAML_SUBJECT instead | |
| Add-ADFSRelyingPartyTrust -Name Yammer -MetadataFile C:\metadata.xml -IssuanceTransformRules '@RuleTemplate = "LdapClaims" @RuleName = "Get attributes" c:[Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname", Issuer == "AD AUTHORITY"] => issue(store = "Active Directory", types = ("SAML_SUBJECT"), query = ";mail;{0}", param = c.Value);' -IssuanceAuthorizationRules '@RuleTemplate = "AllowAllAuthzRule" => issue(Type = "http://schemas.microsoft.com/authorization/claims/permit", Value = "true");' |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment