Closed CeciAc closed 6 years ago
@tkato-2018 commented on Thu Feb 22 2018
@RuleName = "Capture UPN when AccountType is User and issue the IssuerID" c1:[ Type == "http://schemas.xmlsoap.org/claims/UPN" ] && c2:[ Type == "http://schemas.microsoft.com/ws/2012/01/accounttype", Value == "User" ] => issue( Type = "http://schemas.microsoft.com/ws/2008/06/identity/claims/issuerid", Value = regexreplace( c1.Value, ".+@(?.+)", "http://${domain}/adfs/services/trust/" ★ ) );
@RuleName = "Issue issuerID for domain-joined computers" c:[ Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid", Value =~ "-515$", Issuer =~ "^(AD AUTHORITY|SELF AUTHORITY|LOCAL AUTHORITY)$" ] => issue( Type = "http://schemas.microsoft.com/ws/2008/06/identity/claims/issuerid", Value = "http:///adfs/services/trust/" ★ );
@RuleName = "Capture UPN when AccountType is User and issue the IssuerID" c1:[ Type == "http://schemas.xmlsoap.org/claims/UPN" ] && c2:[ Type == "http://schemas.microsoft.com/ws/2012/01/accounttype", Value == "User" ] => issue( Type = "http://schemas.microsoft.com/ws/2008/06/identity/claims/issuerid", Value = regexreplace( c1.Value, ".+@(?.+)", "http://${domain}/adfs/services/trust" ★ ) );
@RuleName = "Issue issuerID for domain-joined computers" c:[ Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid", Value =~ "-515$", Issuer =~ "^(AD AUTHORITY|SELF AUTHORITY|LOCAL AUTHORITY)$" ] => issue( Type = "http://schemas.microsoft.com/ws/2008/06/identity/claims/issuerid", Value = "http:///adfs/services/trust" ★ );
@CeciAc Thanks for the feedback. I assigned the issue for further investigation.
@CeciAc Could you provide which specific document/link or repos you found the typos in ?
@tkato-2018 commented on Thu Feb 22 2018
Typo
@RuleName = "Capture UPN when AccountType is User and issue the IssuerID" c1:[ Type == "http://schemas.xmlsoap.org/claims/UPN" ] && c2:[ Type == "http://schemas.microsoft.com/ws/2012/01/accounttype", Value == "User" ] => issue( Type = "http://schemas.microsoft.com/ws/2008/06/identity/claims/issuerid", Value = regexreplace( c1.Value, ".+@(?.+)",
"http://${domain}/adfs/services/trust/" ★
)
);
@RuleName = "Issue issuerID for domain-joined computers" c:[ Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid", Value =~ "-515$", Issuer =~ "^(AD AUTHORITY|SELF AUTHORITY|LOCAL AUTHORITY)$" ] => issue( Type = "http://schemas.microsoft.com/ws/2008/06/identity/claims/issuerid", Value = "http:///adfs/services/trust/" ★
);
Correct
@RuleName = "Capture UPN when AccountType is User and issue the IssuerID" c1:[ Type == "http://schemas.xmlsoap.org/claims/UPN" ] && c2:[ Type == "http://schemas.microsoft.com/ws/2012/01/accounttype", Value == "User" ] => issue( Type = "http://schemas.microsoft.com/ws/2008/06/identity/claims/issuerid", Value = regexreplace( c1.Value, ".+@(?.+)",
"http://${domain}/adfs/services/trust" ★
)
);
@RuleName = "Issue issuerID for domain-joined computers" c:[ Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid", Value =~ "-515$", Issuer =~ "^(AD AUTHORITY|SELF AUTHORITY|LOCAL AUTHORITY)$" ] => issue( Type = "http://schemas.microsoft.com/ws/2008/06/identity/claims/issuerid", Value = "http:///adfs/services/trust" ★
);