ADFS provider: Client IP = AD FS server

I have setup privacyIDEA and AD FS provider ( https://github.com/sbidy/privacyIDEA-ADFSProvider ) to enable MFA for AD FS. It worked fine, but we want to have the client IP in audit log, even we have setup client IP override ( https://privacyidea.readthedocs.io/en/latest/configuration/system_config.html#override-authorization-client ), the client IP was always the AD FS server itself but not the client IP, is there a way to get the client IP instead?

Hello @lazyfai
welcome to the privacyIDEA community and have fun authenticating with the world’s most flexible open source mfa system :wink:

With the ADFS plugin passing the client information to privacyIDEA is not possible. The client info is passed in a parameter client via the REST API. The ADFS plugin does not fill this parameter.
This would have to happen here:


and here

You could open an issue at github and ask sbidy to add this.

Regards
Cornelius