As you know, there are three “out of the box” Attribute Store in ADFS 2.0 :
- Active Directory
But there is a limitation with the LDAP Attribute Store. As this Technet Article says (http://technet.microsoft.com/en-us/library/ff678034(v=ws.10).aspx) :
When you work with other Lightweight Directory Access Protocol (LDAP)-based attribute stores, you must connect to an LDAP server that supports Windows Integrated authentication. The LDAP connection string must also be written in the format of an LDAP URL, as described in RFC 2255.
This is not the case for all LDAP server. Mostly, you connect with a simple bind, with a ldap user account that has the right to read. For this kind of ldap server, we have to build a custom attribute store. This is the purpose of my CodePlex Project, that I am happy to share with you.
You can find the project here : http://ldapattributestore.codeplex.com/
Feel free to test or to participate if you want. I am not a developer, so any improve in the code will be awesome.