2
Vote

User Group Augmentation

description

When augmentation is enabled there is a call to retrieve the UserPrincipal to augment with group membership however currently this call uses the method FindByIdentity which assumes that the value of the claim in our case email matches UPN however in our target environment this is not the case and therefore doesn't successfully return the group membership an this be changed to use a PrincipalSearcher I have already made the change for our environment and I'm happy to share the solution.

comments

Yvand wrote Aug 9, 2016 at 9:37 AM

Hello,
please feel free to share your solution, or fork the project on GitHub and submit a pull request if you like.
thanks,
Yvan

bryanhart wrote Aug 26, 2016 at 7:53 PM

We are also running into a similar issue - in our case we are using a totally custom field in a non-AD LDAP directory for the identity claim. Would be interested in any updates to this issue.