This project has moved and is read-only. For the latest updates, please go here.

User Group Augmentation


When augmentation is enabled there is a call to retrieve the UserPrincipal to augment with group membership however currently this call uses the method FindByIdentity which assumes that the value of the claim in our case email matches UPN however in our target environment this is not the case and therefore doesn't successfully return the group membership an this be changed to use a PrincipalSearcher I have already made the change for our environment and I'm happy to share the solution.


Yvand wrote Aug 9, 2016 at 10:37 AM

please feel free to share your solution, or fork the project on GitHub and submit a pull request if you like.

bryanhart wrote Aug 26, 2016 at 8:53 PM

We are also running into a similar issue - in our case we are using a totally custom field in a non-AD LDAP directory for the identity claim. Would be interested in any updates to this issue.