Hi,
I created a custom rule that outputs the sAMAccountName of an AD user based on a nameidentifier claim value that is send inside a SAML Assertion to the AD FS 2.0 STS. The sAMAccountName itself is outputted as nameidentifier as well.
So for instance I get "messe" as nameidentier claim in the AD FS STS SAML Assertion. I want to use this SAML Assertion to consume a .Net Web Service. But to perform a logon based on this nameidentifier claim I guess the .Net Web Service also needs to know the domain name.
1. Is the domain name required to perform a logon?
2. How to change my custom rule in order to get the domain name before the "messe", e.g. "mydomain\messe"? Wil I perhaps need several rules?
thx,
MEssE