Add Relying Party Trust

...

5.  Add "EdSmart_RelyingParty" as display name. 

6. Give permissions to the Group.click next.

7. Finish

...

     now we need to replace the highlighted URL to simply role(see next screenshot)

12. "URL" replaced with "role". Click finish.

13. you can remove the previously created MembershipRule

...

• Claim rule name: AttributeDataRule
• custom rule: paste below text(its a custom rule) :

c:[Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname", Issuer == "AD AUTHORITY"]  => issue(store = "Active Directory", types = ("UserID", "mail", "givenName", "sn", "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier"), query = ";mail,mail,givenName,sn,mail;{0}", param = c.Value);

16 you are done it.

Related articles

...