Delete an organization group or custom claim

Applies To: Windows Server 2003 R2

If a group or user no longer requires access to a resource that is protected by Active Directory Federation Services (ADFS), you can delete the organization group claim or custom claim that represents the group or user to reduce management overhead.

For example, an account partner might have provided a group claim or custom claim to represent a capability of a group or role. If this condition changes and the group claim or custom claim is no longer valid in the resource domain, you can delete the group claim.

At the account partner, a group that existed before might no longer be valid. In this case, the corresponding group claim can be removed.

If a partner has been deleted and any claims are specific to the deleted partner, you can delete these claims as well.

Perform this procedure on a federation server in your organization.

Administrative credentials

To complete this procedure, you must be a member of the Administrators group on the local computer.

To delete an organization group or custom claim

1. Click Start, point to Administrative Tools, and then click Active Directory Federation Services.

2. Double-click Federation Service, double-click Trust Policy, double-click My Organization, and then click Organization Claims.

3. In the details pane, right-click the claim to be deleted, and then click Delete.

4. In the Delete group claim message box, click Yes to confirm the deletion.