2.5 KiB
Links für Sharepoint
Donnerstag, 4. Oktober 2018
19:12
https://serverfault.com/questions/676916/adfs-restrict-to-ad-group
Caching des Windows Anmelde Tokens
This can be done by adding a so-called Issuance Authorization Rule.
Step-by-step:
-
Open AD FS Management Center
-
Expand Trust Relationsships
-
Select Relying Party Trusts
-
Right click the required trust
-
Click Edit Claim Rules
-
Goto the Issuance Authorization Rules tab
-
Delete the default Permit Access To All Users rule
-
Click Add Rule
-
Select Permit or Deny Users Based on an Incoming Claim
-
Incoming Claim Type, select Group SID
-
Click Browse at Incoming claim value
-
Select the required group
-
You're done
ADFS claim rules to filter group membership
http://www.molikop.com/2014/04/adfs-claim-rules-filtering-groups/
Beginners Guide to Claims-based Authentication
Sharepoint over Kemp
https://support.kemptechnologies.com/hc/en-us/articles/203123539-SharePoint
https://blog.kaniski.eu/2017/03/basic-sharepoint-load-balancing/
https://www.vioreliftode.com/index.php/adfs-3-0-wap-sni-and-network-load-balancing/
Sharing a SharePoint site with AD Group using ADFS/SSO
https://www.epmpartners.com.au/blog/sharing-a-sharepoint-site-with-ad-group-using-adfs-sso/
Feature Description - SAML
https://support.kemptechnologies.com/hc/en-us/articles/212736383-Feature-Description-SAML
https://www.undocumented-features.com/2018/04/04/change-from-ad-fs-authentication-to-seamless-sso/
Nur bestimmte Gruppen in Claims:
Sehr interessant für Gruppen :
https://www.sharepointfire.com/2013/11/get-ad-group-identity-claim-in-sharepoint-2013/
<<Article.48.ClaimsReader.7z>>