Create or configure Active Directory user attributes that you want
to map to fields in the
CSM
User Business Object. This is typically the
CSM
User Info Lookup Object, but it could be a different table based on your user
implementation.
To configure Active Directory user
attributes:
- Open the AD FS Management tool.
- From the navigation pane, expand
Trust Relationships, and then select
Relying Party Trusts.
- Select the
CSM
server that is configured for SAML.
- Select
Edit Claims Rules, and then select
Add Rule.
- From the
Add Transform Claim Rule Wizard, select the
Send LDAP Attributes as Claims rule template,
and then select
Next.
- Add the following claim rule properties:
Claim rule name |
Provide a name, such as User Attributes. |
Attribute Store |
Select Active
Directory. |
LDAP Attribute |
Add an entry for
each attribute you want to pass to
CSM.
For example, add Given Name, Surname, E-mail Addresses, and Department.
|
Outgoing Claim Type |
Type (do not
select) a name for each attribute. For example, add First Name for the Given
Name attribute. |
- Record the Outgoing Claim Type entries you make so have the names
when you map them to Business Object fields in
CSM.
- Select
Finish.
- Map the Outgoing Claim Types to Business Object fields. See
Map Active Directory User Attributes to
CSM
User Fields.