This project has moved and is read-only. For the latest updates, please go here.

Looking up AD Groups, Windows Claims

Dec 16, 2014 at 7:02 PM

We're using LDAPCP to ensure users select the right claim manipulating SharePoint permissions.

One thing they want to do now is to be able to add a AD group to a SharePoint Group and ultimately, set alerts on a document library to go to a mail-enabled security group.

The claim provider doesn't seem to provide this ability or I'm just missing it. I think i want it to be able to generate permissions of the format


Where {SID} is the group's SID. I think I need this because when I add the group to a sharepoint group via powershell, using $site.ensureuser, sp-setuser, etc this is the encoded claim string that get's used.

I can't seem to get LDAPCP configured to do this. Is it possible to configure the picker to do this? Am I trying to go about this wrong?

Dec 17, 2014 at 7:39 PM
Hi LB,

Please go through the below blog.