Importing the SAML element metadata on ADFS

Last Updated : Oct 10, 2023 |

About this task

On Active Directory Federation Service (ADFS), import the Avaya Experience Platform™ (On-Prem + Connect) metadata to configure Avaya Experience Platform™ (On-Prem + Connect) as a trusted party.

Procedure

  1. Log in to the Active Directory Federation Service system.
  2. On the AD FS page, click AD FS > Relying Party Trusts.
  3. Right-click Relying Party Trusts and click Add Relying Party Trust.
  4. On the Add Relying Party Trust Wizard screen, select Claims aware.
  5. Click Start.
  6. On the Select Data Source screen, select Import data about the relying party from a file.
  7. Click Browse, and select the SAML element metadata XML file saved on your computer.
  8. Click Next.
  9. On the Specify Display Name screen, type the display name in the Display name field.
  10. Click Next.
  11. On the Choose Access Control Policy screen, select Permit Everyone in Choose an access control policy.
  12. Click Next.
  13. On the Ready to Add Trust screen, click Next.
  14. On the Finish screen, click Next to finish adding the relying party trust.
  15. In the right pane, right-click the newly added relying party trust and select Edit Claim Issuance Policy.
  16. Set the userId mapping and common attributes mapping on ADFS.

    In response to an AuthRequest, ADFS sends this data.

    The first mapper must be of type Send LDAP Attributes as Claims and must use the Active Directory attribute store, and map the Email Addresses LDAP attribute to the Outgoing Claim Type of E-Mail Address and the LDAP attribute SAM-Account-Name to Subject Name. You can also add other attributes to be mapped.

Related information
SSO configuration with on-premise Active Directory