Configuring claim rules for Security Center - Security Center 5.8

Security Center Administrator Guide 5.8
series
Security Center 5.8
revised_modified
2020-08-17

After you created the relying party trust on your ADFS server for Security Center, you must configure what claims Security Center requires.

Before you begin

The AD FS Management window must be open on your ADFS server, and the relying party trust must be created for your Security Center main server.

What you should know

This task is part of the deployment process for claims-based authentication using ADFS based on a sample scenario. The sample screen captures are taken from Windows Server 2016. If you are using a different version, your screens might look different.

Procedure

  1. In the AD FS window, click Relying Party Trusts, select the relying party that corresponds to your Security Center system, and click Edit Claim Issuance Policy in the Actions pane.
    The Edit Claim Issuance Policy window opens.
  2. Add a first claim rule for UPN.
    1. Click Add Rule.
    2. In the Claim rule template drop-down list, select Pass Through or Filer an Incoming Claim, and click Next.
    3. Configure the rule and click Finish.
      Claim rule name
      Enter a name that helps you remember the rule.
      Incoming claim type
      Select UPN.
      Pass through all claim values
      Select this option.
  3. Add a second claim rule for Group.
    Follow the instructions for UPN claim rule. Only this time, change UPN to Group.

  4. Click Apply > OK.