Define the claim insurance policy in ADFS to use ADFS as the identity provider for Cortex XSOAR.
You need to define the claim issuance policy. Before you start you need to create the Relying Party Trusts as described in Create Relying Party Trust in ADFS.
From the right menu pane of the Relying Party Trusts, click Edit Claim Issuance Policy
Click Add Rule.
In the Add Transform Claim Rule Wizard, select Transform an Incoming Claim from the dropdown list.
Click Next.
In the Configure Claim Rule page, type the Claim rule name
WindowsAccountName
which will pass the user login name in AD and select the Windows account name for the Incoming and Outgoing claim type.Click Finish.
Add another claim rule which will pass the AD user account attributes to Cortex XSOAR. This step is required to map the user group membership, full name, email, phone and other LDAP attributes.
From the right menu pane of the Relying Party Trusts, click Edit Claim Issuance Policy
Click Add Rule.
In the Add Transform Claim Rule Wizard, select Send LDAP Attributes as Claims from the dropdown list.
Click Next.
In the Configure Claim Rule page, type a claim rule name, select Active Directory from the Attribute store dropdown list and map the required fields. Note that the user group attribute is mandatory if you wish to map the user group to the Cortex XSOAR user role.