Configuring Relying Party Trust in ADFS server

Print Friendly, PDF & Email

To configure relying party trust in ADFS server, follow these steps.

  1. Open Server Manager.
  2. Navigate to Tools > ADFS Management.
  3. In the right pane, click Add Relying Party Trust.
    The Add Relying Party Trust wizard is displayed.
  4. Select the following options in each step.
    • In the Welcome tab, select Claims aware.

      Relying party - welcome

      Click Start.

    • In the Select Data Source tab, select Import data about the relying party from a file.
      To browse and upload the Service Provider Metadata XML in the Federation metadata file location field, follow these steps.

      1. Log on to Seqrite HawkkProtect. Navigate to IdP management.
      2. Click the IdP.
        Right pane is displayed.
      3. Under IdP type, next to Service Provider Metadata XML, click Download.
        Browse and upload this file in the Federation metadata file location field.

      Relying party - Select data source

      Click Start.

    • In the Specify Display Name tab, enter the display name and notes, if any.
      Relying party trust - Specify display name

      Click Next.

    • In the Choose Access Control Policy tab, select a suitable access control policy.

      Relying party trust - Choose access control policy

      Click Next.

    • In the Ready to Add Trust tab, click Next.

      Relying party trust - Ready to add trust

    • In the Finish tab, select the Configure claims issuance policy for this application check box.

      Relying party trust - Finish

      The Relying Party Trust configuration is created from the Service Provider Metadata XML file.

We need to make some custom changes that have not been implemented through this XML file.

To make these changes, follow these steps.

  1. In ADFS management, navigate to Relying Party Trusts.

    Relying party trust

  2. In the right pane, click Edit Claim Issuance Policy under testSP.

    Edit claim issuance policy

    The Edit Claim Issuance Policy for testSP dialog box opens.

  3. Click Add Rule.

    Add Rule

    The Add Transform Claim Rule wizard opens.

    • In the Choose Rule Type tab, select the Send LDAP Attributes as Claims template from the drop-down menu.
      Choose rule type
      Click Next.
    • In the Configure Claim Rule tab, enter the LDAP attributes and corresponding Outgoing Claim Type.

      Configure claim rule

      Click Finish.

    • On the Edit Claim Issuance Policy for testSP dialog box, click OK or Apply.

      Edit claim issuance policy for testSP

We have finished making these custom changes.

Was this page helpful?