I have an on-prem ADFS setup as below with SAML2,
SP <=> ADFS <=> IDP
When the SP initiates an authentication, the client can redirect to the IDP (configured as a Claims Provider) and authenticate himself.
However, I need to pass any form of client identification with the redirection from ADFS to IDP.
I can receive the NameID in ADFS (from SP => ADFS) but I cannot make the ADFS pass it beyond that to the IDP.
I've tried setting up a static claims rule on Claims Provider to see if I can pass 'something', but with no success.
=> issue(Type = "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier", Value = "user@company.com");
How do I get this working? I desperately need this for the SSO to work on my IDP side.
I'm ok with any sort of method/hacks/claim rule whatsoever.
Cheers.
