ADFS App Registration

Follow the steps below to register an application within ADFS. This provides the ability for Active Directory users to log in to the BI Portal.

Open the AD FS Management tool.

Verify that the Source user ID claim is available by going to ADFS > Service > Claim Descriptions.

Check the list for a claim with the name ‘Source user ID’ as defined in the appendix of this document under ADFS Claim Descriptions.

If the Claim Description does not exist, then add it.

step 5

step 5.1

Add a new Relaying Party Trust by going to AD FS > Trust Relationships > Right click on Relying Party Trusts and select ‘Add Relying Party Trust’.

step 6

Select ‘Start’ to begin.

step 7

Select ‘Enter data about this relying party manually’ and select ‘Next’.

step 8

Enter ‘Enterprise BI Portal’ for the name (or a name of your choosing) and select ‘Next’.

step 9

Leave the default ‘AD FS profile’ selected and select ‘Next’.

step 10

Select ‘Next’.

step 11

Select ‘Enable support for WS-Federation Passive protocol’ and then enter the URL of your Enterprise BI Portal, followed by a trailing forward slash.

Select ‘Next’.

step 12

Select ‘Next’.

step 13

Select ‘Next’.

step 14

Select ‘Next’.

step 15

Select ‘Next’.

step 16

Ensure that ‘Open the Edit Claim Rules dialog for this relying party trust when the wizard closes’ checkbox is selected.

Select ‘Close’.

step 17

Select ‘Add Rule…’.

step 18

Select ‘Send Claims Using a Custom Rule’.

Select ‘Next’.

step 19

Enter ‘Enterprise BI Portal Rules’ for the ‘Claim rule name” or a name of your choosing.

Enter the custom rule defined in the appendix under ADFS Custom Rule.

Select ‘Finish’ and then select ‘OK’.

step 20