This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 92%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDF%3C/text%3E%3C/svg%3E)
I have a web application that does auto-logon using REMOTE_USER http value that maps to a LDAP user of the same name. my issue is that the partner IDP is ADFS and i would like to use ADFS on my side of the trust in front of the web application (SP)
I need to set the value REMOTE_USER property either in the http headers of the session. the value of the REMOTE_USER should come ideally from the claim or claim lookup value. is this even possible in a claims processing pipeline. any customization or path forward please advise on ideas or solutions.
i see there is a shibboleth/apache/tomcat way of mapping into a http or environment variable, but i dont want to go learn shibboleth from ground up while i know my way around ADFS a lot more.
Thanks
You can manipulate incoming claims by using ADFS claims rules and issue custom claims to your applications. The key is to understand the incoming claims provided by ADFS and then use custom rules to issue the desired claims, such as REMOTE_USER, for your web application.