Hi all,
At this moment i'm developing a Multi-factor authentication plugin for AD FS with the help of this blog: http://blogs.technet.com/b/cloudpfe/archive/2014/02/01/how-to-create-a-custom-authentication-provider-for-active-directory-federation-services-3-0-part-2.aspx
The claim used in this blog is UPN but my plugin needs a mobilephone number. So I decided to change the claim in string[] IdentityClaims { get; } fromhttp://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn to http://schemas.xmlsoap.org/ws/2005/05/identity/claims/mobilephone
Now it looks like this:
publicstring[] IdentityClaims
{
get {returnnewstring[] {"https://schemas.xmlsoap.org/ws/2005/05/identity/claims/mobilephone" }; }
}
When I run the plugin I see that the identityclaim I receive from ADFS is still an UPN and not mobilephone.
can anyone tell me what I am overlooking?