Add claims with claim name..
- 2 minutes to read
Just a reminder to self..
Wanted to add multiple claims and needed to also have the name specified - not sure where this was documented but here it is anyway - maybe i overlooked it somewhere.
$claim_PrimarySID = New-AdfsClaimRuleSet -ClaimRule '@RuleName = "Pass through GroupSID" c:[Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid"] => issue(claim = c);'
$claim_GroupSid = New-AdfsClaimRuleSet -ClaimRule '@RuleName = "Pass through UPN" c:[Type == "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn"] => issue(claim = c);'
$All_Claims = New-AdfsClaimRuleSet -ClaimRule ($claim_GroupSid.ClaimRules + $claim_PrimarySID.ClaimRules)
Add-ADFSRelyingPartyTrust -Name $name -Identifier $name -IssuanceAuthorizationRules $authorizationrule -issuancetransformrules $All_Claims.ClaimRulesString etc..