We're using AM 4.1 as an Identity Provider for a custom .NET application
using WS-Federation as the authentication protocol.

Certain assertions (knows as ClaimTypes in Microsoft's terminology) are
received by the relying party just fine, such as:


Code:
--------------------
http://schemas.xmlsoap.org/ws/2005/0...nameidentifier
http://schemas.xmlsoap.org/ws/2005/0...ty/claims/name
http://schemas.microsoft.com/ws/2008...ty/claims/role
http://schemas.microsoft.com/ws/2008...ticationmethod
http://schemas.microsoft.com/ws/2008...icationinstant
--------------------


but these are filtered out for some reason:

Code:
--------------------

http://schemas.xmlsoap.org/ws/2005/0...aims/givenname
http://schemas.xmlsoap.org/ws/2005/0...claims/surname
http://schemas.xmlsoap.org/ws/2005/0...s/emailaddress
--------------------


We may even freely specify our own claim types, such as:


Code:
--------------------
http://schemas.xmlsoap.org/ws/2005/0...ims/given_name
--------------------


and those _will_ be sent and received appropriately.

What could be causing these specific claim types to be ignored?


--
vjraitila
------------------------------------------------------------------------
vjraitila's Profile: https://forums.netiq.com/member.php?userid=10629
View this thread: https://forums.netiq.com/showthread.php?t=55842