This project has moved and is read-only. For the latest updates, please go here.

Zero result in peoplepicker for user mail id search

Jan 8, 2015 at 9:09 PM
Hi Team,

I have installed latest LDAPCP and developer LDAPCP solution in my farm for connecting with two SPTrustedSecurityTokenIssuser.

Everything is looking good except searching for email Id of the user. When i tried to search for user with email id getting zero result.

I have tried in two ways - Created test account with displayname, comman name and email id with Testuser@*****.com. When i tried to search with testuser and testuser@*****.com. Getting Zero result from one TrustedIdentityProvider and got result from another TrustedIdentityprovider.

Mail parameter is missing in the query for the one trustedidentity provider. Could you please assist me in resolving the same.

ULS Query log

[LDAPCP_MARSH] This LDAP query did not return any result: "(&(!(userAccountControl:1.2.840..1.4.803:=2))(| (&(objectclass=user)(sAMAccountName=mohamed.farook@marsh.com*)(!(objectClass=computer))) (&(objectclass=user)(displayName=mohamed.farook@marsh.com*)) (&(objectclass=user)(cn=mohamed.farook@marsh.com*)(!(objectClass=computer))) (&(objectclass=user)(sn=mohamed.farook@marsh.com*)) ))"


LDAPCP] Got 1 result(s) from all LDAP server(s) with query "(| (&(objectclass=user)(sAMAccountName=
(&(objectclass=user)(sAMAccountName=*mohamed.farook@marsh.com*)(!(objectClass=computer))) (&(objectclass=user)(displayName=
(&(objectclass=user)(displayName=*mohamed.farook@marsh.com*)) (&(objectclass=user)(cn=
(&(objectclass=user)(cn=*mohamed.farook@marsh.com*)(!(objectClass=computer))) (&(objectclass=user)(sn=
(&(objectclass=user)(sn=*mohamed.farook@marsh.com*)) (&(objectclass=user)(mail=
(&(objectclass=user)(mail=*mohamed.farook@marsh.com*)) )"

I am able to see claim for only one TrustedIdentityProvider as below. Unable to view Claim table for another.

1st = pingfederatests5
2nd = pingfederatests5TAM
Claim Table as below:
This table is used by LDAPCP to link claim types with LDAP objects. Claim types should match those set in SPTrustedIdentityTokenIssuer "pingfederatests5".
Action Claim type LDAP Attribute LDAP class Attribute to display Metadata Claim entity type Additional LDAP filter Prefix to bypass lookup Prefix to add to value returned
Edit DeleteSave Cancel http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress EmailAddress user EmailAccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted
Edit Save Cancel http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname sAMAccountName user AccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted (!(objectClass=computer))
Edit DeleteSave Cancel http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn userPrincipalName user AccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted
Edit DeleteSave Cancel http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname givenName user AccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted
Edit DeleteSave Cancel http://schemas.xmlsoap.org/ws/2005/05/identity/claims/locality physicalDeliveryOfficeName user LocationAccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation FormsRoleUserDistributionListSecurityGroupSystemFormsRoleTrusted
Edit DeleteSave Cancel http://schemas.microsoft.com/ws/2008/06/identity/claims/role sAMAccountName group AccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation FormsRoleUserDistributionListSecurityGroupSystemFormsRoleTrusted
DeleteSave Cancel linked to identity claim displayName user DisplayNameAccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted
DeleteSave Cancel linked to identity claim cn user AccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted (!(objectClass=computer))
DeleteSave Cancel linked to identity claim sn user AccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted
DeleteSave Cancel Used as metadata for the permission created title user TitleAccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted
DeleteSave Cancel Used as metadata for the permission created msRTCSIP-PrimaryUserAddress user SIPAddressAccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted
DeleteSave Cancel Used as metadata for the permission created telephoneNumber user WorkPhoneAccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted
DeleteSave Cancel linked to identity claim mail user AccountNameDisplayNameDepartmentEmailUserIdSharePointGroupIdSIPAddressPrincipalTypeMobilePhoneJobTitleWorkPhoneLocation UserUserDistributionListSecurityGroupSystemFormsRoleTrusted