Change the domain suffix for an incoming or outgoing e-mail claim

  • Article

Applies To: Windows Server 2003 R2

In Active Directory Federation Services (ADFS), an e-mail identity claim is an organization identity claim that is created when you create an account or resource partner. The e-mail identity claim is automatically mapped to the outgoing (from the account Federation Service) and incoming (to the resource Federation Service) e-mail claim. In the account Federation Service, you specify whether all domain suffixes can be sent to the resource Federation Service, or whether you will replace all domain suffixes with a specific domain suffix. In the resource Federation Service, you can specify the domain suffixes that the resource Federation Service will accept or, if your partnership does not extend across the Internet, you can accept all domain suffixes.

Note

To manage the properties of an identity claim, the claim must first be enabled.

Administrative credentials

To complete these procedures, you must be a member of the Administrators group on the local computer.

To change the domain suffix for an outgoing e-mail identity claim in the account Federation Service

  1. Click Start, point to Administrative Tools, and then click Active Directory Federation Services.

  2. Double-click Federation Service, double-click Trust Policy, double-click Partner Organizations, double-click Resource Partners, and then click the resource partner whose e-mail claim you want to manage.

  3. In the details pane, right-click the e-mail identity claim, and then click Properties.

  4. Under Settings, select Replace all domain suffixes with if it is not selected.

  5. In Specify the new suffix, type the domain name suffix, and then click OK.

To change the domain suffixes for an incoming e-mail identity claim in the resource Federation Service

  1. Click Start, point to Administrative Tools, and then click Active Directory Federation Services.

  2. Double-click Federation Service, double-click Trust Policy, double-click Partner Organizations, double-click Account Partners, and then click the account partner whose e-mail claim you want to manage.

  3. In the details pane, right-click the e-mail identity claim, and then click Properties.

  4. Under Settings, select Accept some domain suffixes if it is not selected.

  5. In Accepted domains (press Enter to separate entries), type the domain name suffix or suffixes, and then click OK.

See Also

Concepts

Enable or disable an organization identity claim for an account or resource partner