question

sivasubramanian-8055 avatar image
0 Votes"
sivasubramanian-8055 asked suyogmahindrakar-5014 commented

SharePoint 2019 on-Premise ADFS claim aware application is not sync with AD profile.

We have a setup with ADFS claim aware application. It working as expected.

Am able to login through domain credentials But SharePoint login profile is not synchronize with my AD profile means in SharePoint my site profile is not get synchronize with my AD profile.

Some blogs suggest to use ldapcp add-on. Here am able to deploy the ldapcp add-on.
But after deployed people picker is not working. It not searching a user in AD.

Am getting error “Multiple entries matched, please click to resolve.”

Please suggest how to resolve the SharePoint ADFS claim aware application profile sync issue with or without using ldapcp?

Thanks
Sivasubramanian.G




adfsoffice-sharepoint-server-customization
· 1
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

EmilyDu-MSFT avatar image EmilyDu-MSFT ·

@sivasubramanian-8055
I'm checking how the things are going on about this issue. Whether the answer helps you?

You can accept the answer if it helps.

If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


0 Votes 0 ·

2 Answers

trevorseward avatar image
0 Votes"
trevorseward answered suyogmahindrakar-5014 commented

Your UPSA needs to be configured to synchronize against the Trusted Identity Provider and not Windows auth. See https://joshroark.com/sharepoint-active-directory-import-with-trusted-provider-authentication-map-only-claim-user-identifier/.

· 2
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

sivasubramanian-8055 avatar image sivasubramanian-8055 ·

Great! your solution is working.

0 Votes 0 ·
suyogmahindrakar-5014 avatar image suyogmahindrakar-5014 ·

Hi ,

We have similar issue, however in our case it does not search any user .
we dont have one way trust between AD's , will above solution work

0 Votes 0 ·
EmilyDu-MSFT avatar image
0 Votes"
EmilyDu-MSFT answered

@sivasubramanian-8055
You could refer following article to know how to configure User Profile Service Application to use newly created Trusted Claims Provider for importing users from Active Directory.

Configure User Profile Service For ADFS Provider

If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.




5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.