We have two domains (with no trust). Domain A and Domain B.
There is a SharePoint farm in Domain A and an ADFS 2.0 server inDomain B.
We have authentication working perfectly. Domain B users can login to SharePoint A as long as they've been granted the relevant permissions in SP.
However the People Picker is proving challenging.
As part of the claim type mapping we are passing Email, Department, Groups fromB to A as a user authenticates across via ADFS. These attribute titles appear in the People Picker which looks like;
- Organizations
- All Users
- Active Directory
- ADFS >
- - - > UPN
- - - > Department
- - - > Groups
- SharePoint Groups
Here's what happens.....
- User clicks the Address Book icon to load people picker
- User sees the above structure ^
- User clicks ADFS and enters a search term "Finance"
People picker results return (on left side);
- -- > UPN (1)
- -- > Department (1)
- - -> Groups (1)
and on the right side (where the objects appear it shows 3 of them!!!)
- [ICON] Finance
- [ICON] Finance
- [ICON] Finance
I understand that because we have no trust between the domains, there is no way for the People Picker to actually do a search and resolve a user/group objectWHY IS IT RETURNING 3 FOR EVERY SEARCH?
Paul Griffiths - MCTS, MCITP SharePoint 2010