SharePoint2010 and AD FS 2.0 integration

Hi,

Is there any special treatment inside SharePoint 2010 of claims that belong to the namespace ending with a 'role'? I mean, my AD FS 2.0 emits claims in four different namespaces:

• http://claims.company.com/ctmo/r1/role
• http://claims.company.com/ctmo/r1/role/segment
• http://claims.company.com/ctmo/r1/role/study
• http://claims.company.com/ctmo/r1/role/studysite

and on SharePoint I can see that only the claims from the last three namespaces are correct. For the first one in SAML I can see somtheling like below, the namespace has changed tohttp://schemas.microsoft.com/ws/2008/06/identity/claims. We have sampe Web Site configured the same way that display claims and there everything is fine. If I reconfigure AD FS to use namespacehttp://claims.company.com/ctmo/r1/aaa instead ofhttp://claims.company.com/ctmo/r1/role then everything is fine on SharePoint.

<s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing">

    ....

    <s:Body>

    ....

    <saml:AttributeStatement>

        <saml:Attribute AttributeName="role" AttributeNamespace="http://schemas.microsoft.com/ws/2008/06/identity/claims">

            <saml:AttributeValue>portal visitor</saml:AttributeValue>
            <saml:AttributeValue>business sponsor</saml:AttributeValue>
            <saml:AttributeValue>system manager</saml:AttributeValue>

        </saml:Attribute>

         <saml:Attribute AttributeName="segment" AttributeNamespace="http://claims.company.com/ctmo/r1/role">
            <saml:AttributeValue>accu-chek/segment stakeholder</saml:AttributeValue>
            <saml:AttributeValue>accu-chek/segment manager</saml:AttributeValue>
            <saml:AttributeValue>accu-chek/segment visitor internal</saml:AttributeValue>
            <saml:AttributeValue>accu-chek/segment visitor external</saml:AttributeValue>
        </saml:Attribute>
        <saml:Attribute AttributeName="study" AttributeNamespace="http://claims.company.com/ctmo/r1/role">
            <saml:AttributeValue>accu-chek/rd00002/study manager delegate</saml:AttributeValue>
            <saml:AttributeValue>accu-chek/rd00001/study manager</saml:AttributeValue>
        </saml:Attribute>
        <saml:Attribute AttributeName="studysite" AttributeNamespace="http://claims.company.com/ctmo/r1/role">
            <saml:AttributeValue>accu-chek/rd00001/s-0070/site content manager</saml:AttributeValue>
            <saml:AttributeValue>accu-chek/rd00002/s-0081/site investigator</saml:AttributeValue>
            <saml:AttributeValue>accu-chek/rd00002/s-0080/site coordinator</saml:AttributeValue>
            <saml:AttributeValue>accu-chek/rd00001/s-0071/site visitor</saml:AttributeValue>
        </saml:Attribute>
    </saml:AttributeStatement>

    ....

    </s:Body>

</s:Envelope> 

Best regards

    Rafal Grzybowski