Add Transform Rule - Configure Transform Rule

Updated: February 16, 2012

Applies To: Active Directory Federation Services (AD FS) 2.0, Windows Server 2012

 

Item Detail

Claim Rule Name

Enter a descriptive name for the claim rule.

Incoming claim type

Select a claim type from the drop-down list of available claim types.

Incoming name ID format

Select a name ID format from the drop-down list of available name ID formats. This field is enabled only when the user selects Name Identifier as the incoming claim type.

Outgoing claim type

Select a claim type from the drop-down list of available claim types.

Outgoing name ID format

Select a name ID format from the drop-down list of available name ID formats. This field is enabled only when the user selects Name Identifier as the outgoing claim type.

Pass through all claim values

Select this option to pass through all claim values without change or alteration. If this option is selected, values from incoming claims are not modified when they are sent in outgoing claims.

Replace an incoming claim value with a different outgoing claim value

Select this option to modify or update the outgoing claim value. If this option is selected, a value from an incoming claim that matches Incoming claim value is replaced with the Outgoing claim value when it is sent in outgoing claims. Values that do not match the specified incoming claim value will not be sent. This option should be used with caution on acceptance transform rules because a claims provider may provide invalid claim values that should be filtered.

Replace incoming e-mail suffix claims with a new e-mail suffix

Select this option to modify or update an e-mail suffix as part of the incoming and outgoing claim values. If this option is selected, the e-mail suffix portion of the incoming claim value is removed and the New e-mail suffix is appended to the e-mail user name when it is issued as an outgoing claim. Claim values that do not use an e-mail syntax will not be sent.

noteNote
Regarding the comparison of claims values, Active Directory Federation Services (AD FS) 2.0 is not case sensitive.

Community Additions

ADD
Show: