This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 46%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
Hi;
In ADFS, when configure a claim rules for Relying Parties, when I specify "E-mail-Addresses" in LDAP Attributes, how do I know what actual email address is being used for authentication?
thanks!
What you pick in the issuance transform rules is not used to authenticate the user, it is what is sent to the application as a claim in the token.
Do you mean that you would like to use the email instead of the UPN or the samaccountname to log in?