Yvand
commented
1 year ago @LeeInWV can you paste a screenshot of the LDAPCP claims mapping page ?
Closed LeeInWV closed 1 year ago
Yvand
commented
1 year ago @LeeInWV can you paste a screenshot of the LDAPCP claims mapping page ?
LeeInWV
commented
1 year ago 
Thanks for your help.
Yvand
commented
1 year ago The error message is because this list is missing the claim type for the groups. Can you edit the 5th row (role claim type) to set it to the actual group claim type ?
LeeInWV
commented
1 year ago We are using an old version(v2017.10) . The claim entity type only shows
I am guessing we will need to use a newer version?
LeeInWV
commented
1 year ago Updating the LDAPCP version resolved the issue. I can now see the users. Thanks again for your help.
Yvand
commented
1 year ago Thank you for your feedback, I'll close the issue, feel free to reopen it if necessary
I am seeing these entries in our ULS logs. I have recently taken over this after the staff maintaining this have left. We are trying to use mail for the user login with the SSO.The user can sign in with the PIV card but then they go to an error page.
Monitorable [LDAPCP] Entry with LDAP class group is defined but it doesn't match any entry with the same LDAP class and a claim type defined. Add an entry with same LDAP object class and a claim type to fix this issue.
Get-SPTrustedIdentityTokenIssuer shows this: {http://schemas.xmlsoap.org/claims/EmailAddress, http://schemas.xmlsoap.org/claims/UPN}
Get-SPClaimProvider shows LDACP
The ClaimsTable shows 2 entries that are green: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress� http://schemas.xmlsoap.org/claims/upn�
Thanks in advance for your help.
Lee