azure saml claims

%3CLINGO-SUB%20id%3D%22lingo-sub-463371%22%20slang%3D%22en-US%22%3Eazure%20saml%20claims%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-463371%22%20slang%3D%22en-US%22%3E%3CP%3ESeems%20like%20the%20claims%20transform%20rule%20with%20azure%20sso%20are%20a%20bit%20more%20restrictive%2C%26nbsp%3B%20I'm%20trying%20to%20do%20something%20like%20the%20following%20which%20is%20an%20adfs%20based%20claims%20rule.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ec%3A%5BType%20%3D%3D%20%22%3CA%20href%3D%22http%3A%2F%2Fschemas.xmlsoap.org%2Fclaims%2FGroup%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttp%3A%2F%2Fschemas.xmlsoap.org%2Fclaims%2FGroup%3C%2FA%3E%22%2C%20Value%20%3D~%20%22%5E(%3Fi)contractors%22%5D%3CBR%20%2F%3E%3D%26gt%3B%20issue(claim%20%3D%20c)%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20one%20last%20rp%20that%20I%20need%20to%20be%20able%20to%20exclude%20groups%20with%20names%20like%20contractors%2C%26nbsp%3B%20am%20I%20missing%20something%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-472336%22%20slang%3D%22en-US%22%3ERe%3A%20azure%20saml%20claims%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-472336%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F133977%22%20target%3D%22_blank%22%3E%40tony%20roth%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F124214%22%20target%3D%22_blank%22%3E%40Yuri%20Diogenes%3C%2FA%3E%3A%20Is%20this%20something%20you%20can%20help%20with%3F%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-472425%22%20slang%3D%22en-US%22%3ERe%3A%20azure%20saml%20claims%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-472425%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%20for%20loop%20me%20in%2C%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F293935%22%20target%3D%22_blank%22%3E%40Valon_Kolica%3C%2FA%3E%20but%20unfortunately%20that's%20not%20my%20area%20of%20expertise.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Contributor

Seems like the claims transform rule with azure sso are a bit more restrictive,  I'm trying to do something like the following which is an adfs based claims rule.

 

c:[Type == "http://schemas.xmlsoap.org/claims/Group", Value =~ "^(?i)contractors"]
=> issue(claim = c);

 

I have one last rp that I need to be able to exclude groups with names like contractors,  am I missing something?

 

2 Replies

@tony roth 

 

@Yuri Diogenes: Is this something you can help with? 

Thanks for loop me in, @Valon_Kolica but unfortunately that's not my area of expertise.