Skip Navigation
  1. BlackBerry Docs
  2. BlackBerry Workspaces
  3. BlackBerry Workspaces Server 12
  4. BlackBerry Workspaces SAML SSO Integration Guide
  5. AD FS
  6. Configuring the BlackBerry Workspaces Settings
  7. Set the issuance transform rules

Set the issuance transform rules

On the
Issuance Transform Rules
 tab, configure the Send LDAP Attributes as Claims rule and the Transform as an Incoming Claim rule.
  1. Access the Edit Claim Rules application.
    1. Click
      Relying Party Trust
      .
    2. Right-click the new
      BlackBerry
      Workspaces
       Party Trust and select
      Edit Claim Rules
      .
  2. Click the
    Issuance Transform Rules
     tab.
  3. Click
    Add rule...
    Send LDAP Attributes as Claims
    Next
    .
  4. Assign values to the rule parameters.
    Rule parameter
    Value
    Claim Rule Name
    Get LDAP Attributes
    Attribute Store
    Active Directory
  5. Configure the LDAP attributes, and click
    OK
    .
    LDAP attribute
    Outgoing claim type
    Email-Addresses
    Email address
    Display-Name
    Given name
    User-Principal-Name
    UPN
  6. Click
    Add rule...
    Transform an Incoming Claim
    Next
    .
  7. Assign values to the rule parameters.
    Rule parameter
    Value
    Claim Rule Name
    Email to Name ID
    Incoming Claim Type
    Email address
    Outgoing Claim Type
    Name ID
    Do not select Name.
    Outgoing Name ID Format
    Email
  8. Click
    Pass through all claim values
    .