Error during Register-AdfsAuthenticationProvider: ADMIN0021: Invalid authentication provider data. You can only specify a maximum of one identity claim.

Jan 20 at 8:03 AM
Hello!

I got this error on Windows Server 2016 during Register-AdfsAuthenticationProvider:

C:\Distr\Neos.IdentityServer.MultiFactor 1.1\IdentityServer> Register-AdfsAuthenticationProvider -TypeName $typeName -Name "MultiFactorAuthenticationProvider" -Verbose -ConfigurationFilePath ".\configdata.xml"
Register-AdfsAuthenticationProvider : ADMIN0021: Invalid authentication provider data. You can only specify a maximum of one identity claim.
At line:1 char:1
  • Register-AdfsAuthenticationProvider -TypeName $typeName -Name "MultiF ...
  • ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    • CategoryInfo : NotSpecified: (:) [Register-AdfsAuthenticationProvider], InvalidDataException
    • FullyQualifiedErrorId : ADMIN0021: Invalid authentication provider data. You can only specify a maximum of one identity claim.,Micro
      soft.IdentityServer.Management.Commands.AddExternalAuthProviderCommand
Jan 20 at 8:04 AM
I get all commands from "register multi factor.txt" file.
Jan 20 at 8:51 AM
On Windows Server 2012 the same error.
Coordinator
Jan 22 at 3:26 PM
Hi Hedius

Thanks, yes the bug is confirmed in version 1.1.0.1.

During our tests, the problem did not occur.
Actually when registering via powershell an error occurs : ADMIN0021: Invalid authentication provider data. You can only specify a maximum of one identity claim.

We have modified the implementation of the IAuthenticationAdapterMetadata interface in the Neos.IdentityServer.Multifactor.AdapterMetadata.cs file.
You will be able to read the comments in the file.
It's imperative to download the binaries again and install version 1.1.0.2

Regards
Marked as answer by redhook on 6/21/2017 at 10:47 AM