n1NqkIA0BDf1XHhzwlSV+1qZPxkuTCZ+mi3NibJiDHs=AQwrhx4/nQlo88FqJzSZ8ntN073ug5WsF+pBgcVLFrIiepqk3IBEqoEhvgx3uiseafwxIIs4f0w6b5tshOJ20jVElNkRFFkqhfYAUERMfOO/pmzCgL5Gg+620KBjIB5NceGE6LfiCCsoVqlSd09D0PwbLspiMVcGIR2wZJzwjggL1+udnkQ/h/d5/kP0M3hw8mBW22pzgNXfHodCTOcRkHD3UpCRRarClfxZureSjBakU5xPFkXqyJ3sN/fpkfH9LTPSai6RG8wPyu6+es1+2BZMPkuov4fuap88rmCFvGTfI4YnjO89dsc0BKzRrOoDr9g9mxSVbHu0riyPzM0GuA==MIIC0jCCAbqgAwIBAgIQJp+pqKglboFIG0SPUB5xRjANBgkqhkiG9w0BAQsFADAlMSMwIQYDVQQDExpBREZTIFNpZ25pbmcgLSBzdHMuYWRhYy5kZTAeFw0yMjA4MDQxNzQxMDlaFw0yNzA4MDMxNzQxMDlaMCUxIzAhBgNVBAMTGkFERlMgU2lnbmluZyAtIHN0cy5hZGFjLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoeuEN2UChfi0VCZw+a0oyA2iPMOHfJPupPlac56DVss31zqcSfE2kNHVaBCJnzPsDhICiCEV9MRm2931S7pRmBv/tPmdpXjJ3q7FmJxXXU5b+MpHayXljrZvEgyErFHJ9T74WldaZEMBK8XpP2gYN5LMGM8KYwFiHXGReMN0m0iW1azptWKtXP1d46g1VocGi/KUNQzdp3YThbr21CVBLluDOzkFJuHu8bwfpTTMH6Uiwuws05F9qWLASWDncz1ZXwhdNr6csxlWtOCYlzHmLMVZWD9SecddOryqNLCHRUc2AStx/S1PT8ooqIMHkDY7UMhNAm1ksZ5cmNbCtSfKSQIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQBRZZDoDB93GEdvg67gdAmdUiOKXYUfhPVPIsynQLIGyGq9F7Oh2mMb+qybaDvH4Y6hCqso2nqDQ4+uQ1/CUgMSSzIGeG4gf5OoaoyXPyQ7BR6I73Uzy6ZagKz0zieABVHwtUasH+nHWq9zUgcFd6Kq+u7io/jyBqFis9vRqK4nme59Ta4ksKTC1Vjyx/x64AxXIgmtTENNm2B8ZgdnK9KEeg35e+I7APOD+qKzewFhw8uVgYGPt25QjMu2gh+3VM43r07Wrc5/XhQGUxdcbxDfsFoeBURyiEZecStsifVMhUyv+tdWfWgU91og9kYRJxeWBZH2vCnSrvREctC+PPB9MIIC2DCCAcCgAwIBAgIQcBSGQhFrhbBIO1uw4hcHIDANBgkqhkiG9w0BAQsFADAoMSYwJAYDVQQDEx1BREZTIEVuY3J5cHRpb24gLSBzdHMuYWRhYy5kZTAeFw0yMjA4MDQxNzQxMDhaFw0yNzA4MDMxNzQxMDhaMCgxJjAkBgNVBAMTHUFERlMgRW5jcnlwdGlvbiAtIHN0cy5hZGFjLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFrzw5q7QY59lOcbHaf47ZLNuIwYnsNIW/5hQpwIayXfYunnd6WMPAL3laQv3tX2d45m0ellWJD4hCAe7fpEh7XHslTeqrXaV0vdXACIjuK6+2QF9h6PoZAhSaKa4g+GctWVXyosXcwKAXlRR+QGYBQQUWeZOFWysuhw6ZkEQfkY5JJbH8mASt2ov3j9YOGqjUirDC1jUkBcJ3/d+eEHzbwlOicf2O7rCMPPkmGOaZEDqbiStM9a1Sa3AXHUyt8mAfXkknXehoAYBheHkpLUhQGLlme609xlZFuW5MaImo3HLC9wetukrq5gx2utPwxipyI1TyHFNopV5Zz0k/WWfQIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQBN0OiG+MaClDpoTUXh/AeH7AqgULly3VJDNIdlz9RQ33cGi40hZR5iO0vwBTqZ2+gn88Ppqi5gyH8qPY7R+LAM5kkm3UXZsn0U2QpQ09LN0XL4LpRa3NLDNOPzHFszAi+FhGoGGun57CvaPymc/YzVArfJQN+CpgUruELjpMuZ8BhuXlx8rou9EwwRdlZKNo9sRhkBmol88kONRF69DFPgbFFK7UhXo4hpDbdspR1bJoqj8MZz3HASCL9BP+k9Ma+sL/yZY8bVAnxWNA7pRC8uFxHLw+ukyO56mrjoL/8mY1tza1v31phKYqw2lFbmP97H1qx6JB4loQz0p09ScciuWindows deny-only device groupThe windows deny-only group SID of the deviceWindows device groupThe windows group SID of the deviceAlternate Login IDAlternate login ID of the userClient Request IDIdentifier for a user sessionAuthentication Methods ReferencesUsed to indicate all authentication methods used to authenticate the userUpdate Password URLUsed to display the web address of update password servicePassword Expiration DaysUsed to display the number of days to password expiryPassword Expiration TimeUsed to display the time when the password expiresInside Corporate NetworkUsed to indicate if a request originated inside corporate networkX.509 VersionThe X.509 format version of a certificateThumbprintThumbprint of the certificateV1 Template NameThe name of the version 1 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific.V2 Template NameThe name of the version 2 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific.Subject NameThe subject distinguished name from a certificateSubject Key IdentifierDescribes the subject key identifier of the certificateSubjectThe subject from the certificateSignature AlgorithmThe algorithm used to create the signature of a certificateSerial NumberThe serial number of a certificateSubject Alternative NameOne of the alternative names of the certificateCertificate Raw DataThe raw data of the certificatePublic KeyPublic Key of the certificateCertificate PoliciesThe policies under which the certificate has been issuedNot BeforeThe date in local time on which a certificate becomes validNot AfterDate in local time after which a certificate is no longer validKey UsageOne of the key usages of the certificateIssuer NameThe distinguished name of the certificate issuerIssuerThe name of the certificate authority that issued the X.509 certificateEnhanced Key UsageDescribes one of the enhanced key usages of the certificateBasic ConstraintOne of the basic constraints of the certificateAuthority Key IdentifierThe Authority Key Identifier extension of the certificate that signed an issued certificateApplication policiesApplication policies of the certificateApplication IdentifierIdentifier for the Relying PartyProxyDNS name of the federation server proxy that passed the requestEndpoint PathAbsolute Endpoint path which can be used to determine active versus passive clientsClient IPIP address of the clientClient User AgentDevice type the client is using to access the applicationClient ApplicationType of the Client ApplicationForwarded Client IPIP address of the userIs Managed DeviceDevice is managed by a management serviceDevice OS VersionOS version of the deviceDevice OS typeOS type of the deviceDevice Registration DisplayNameDisplay name of Device RegistrationDevice Registration IdentifierIdentifier for Device RegistrationDevice IdentifierIdentifier of the deviceIs Registered UserUser is registered to use this deviceWindows account nameThe domain account name of the user in the form of domain\userPrimary SIDThe primary SID of the userPrimary group SIDThe primary group SID of the userGroup SIDThe group SID of the userDeny only primary group SIDThe deny-only primary group SID of the userDeny only primary SIDThe deny-only primary SID of the userDeny only group SIDThe deny-only group SID of the userAuthentication methodThe method used to authenticate the userAuthentication time stampUsed to display the time and date that the user was authenticatedName IDThe SAML name identifier of the userPPIDThe private identifier of the userSurnameThe surname of the userRoleA role that the user hasAD FS 1.x UPNThe UPN of the user when interoperating with AD FS 1.1 or AD FS 1.0GroupA group that the user is a member ofAD FS 1.x E-Mail AddressThe e-mail address of the user when interoperating with AD FS 1.1 or AD FS 1.0Common NameThe common name of the userUPNThe user principal name (UPN) of the userNameThe unique name of the userGiven NameThe given name of the userE-Mail AddressThe e-mail address of the userhttps://sts.adac.de/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256https://sts.adac.de/adfs/services/trust/2005/issuedtokenmixedsymmetricbasic256https://sts.adac.de/adfs/services/trust/13/issuedtokenmixedasymmetricbasic256https://sts.adac.de/adfs/services/trust/13/issuedtokenmixedsymmetricbasic256https://sts.adac.de/adfs/ls/http://sts.adac.de/adfs/services/trusthttps://sts.adac.de/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256https://sts.adac.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 deny-only device groupThe windows deny-only group SID of the deviceWindows device groupThe windows group SID of the deviceAlternate Login IDAlternate login ID of the userClient Request IDIdentifier for a user sessionAuthentication Methods ReferencesUsed to indicate all authentication methods used to authenticate the userUpdate Password URLUsed to display the web address of update password servicePassword Expiration DaysUsed to display the number of days to password expiryPassword Expiration TimeUsed to display the time when the password expiresInside Corporate NetworkUsed to indicate if a request originated inside corporate networkX.509 VersionThe X.509 format version of a certificateThumbprintThumbprint of the certificateV1 Template NameThe name of the version 1 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific.V2 Template NameThe name of the version 2 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific.Subject NameThe subject distinguished name from a certificateSubject Key IdentifierDescribes the subject key identifier of the certificateSubjectThe subject from the certificateSignature AlgorithmThe algorithm used to create the signature of a certificateSerial NumberThe serial number of a certificateSubject Alternative NameOne of the alternative names of the certificateCertificate Raw DataThe raw data of the certificatePublic KeyPublic Key of the certificateCertificate PoliciesThe policies under which the certificate has been issuedNot BeforeThe date in local time on which a certificate becomes validNot AfterDate in local time after which a certificate is no longer validKey UsageOne of the key usages of the certificateIssuer NameThe distinguished name of the certificate issuerIssuerThe name of the certificate authority that issued the X.509 certificateEnhanced Key UsageDescribes one of the enhanced key usages of the certificateBasic ConstraintOne of the basic constraints of the certificateAuthority Key IdentifierThe Authority Key Identifier extension of the certificate that signed an issued certificateApplication policiesApplication policies of the certificateApplication IdentifierIdentifier for the Relying PartyProxyDNS name of the federation server proxy that passed the requestEndpoint PathAbsolute Endpoint path which can be used to determine active versus passive clientsClient IPIP address of the clientClient User AgentDevice type the client is using to access the applicationClient ApplicationType of the Client ApplicationForwarded Client IPIP address of the userIs Managed DeviceDevice is managed by a management serviceDevice OS VersionOS version of the deviceDevice OS typeOS type of the deviceDevice Registration DisplayNameDisplay name of Device RegistrationDevice Registration IdentifierIdentifier for Device RegistrationDevice IdentifierIdentifier of the deviceIs Registered UserUser is registered to use this deviceWindows account nameThe domain account name of the user in the form of domain\userPrimary SIDThe primary SID of the userPrimary group SIDThe primary group SID of the userGroup SIDThe group SID of the userDeny only primary group SIDThe deny-only primary group SID of the userDeny only primary SIDThe deny-only primary SID of the userDeny only group SIDThe deny-only group SID of the userAuthentication methodThe method used to authenticate the userAuthentication time stampUsed to display the time and date that the user was authenticatedName IDThe SAML name identifier of the userPPIDThe private identifier of the userSurnameThe surname of the userRoleA role that the user hasAD FS 1.x UPNThe UPN of the user when interoperating with AD FS 1.1 or AD FS 1.0GroupA group that the user is a member ofAD FS 1.x E-Mail AddressThe e-mail address of the user when interoperating with AD FS 1.1 or AD FS 1.0Common NameThe common name of the userUPNThe user principal name (UPN) of the userNameThe unique name of the userGiven NameThe given name of the userE-Mail AddressThe e-mail address of the userhttps://sts.adac.de/adfs/services/trust/2005/certificatemixedhttps://sts.adac.de/adfs/services/trust/mexhttps://sts.adac.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:oasis:names:tc:SAML:1.1:nameid-format:emailAddressurn:oasis:names:tc:SAML:2.0:nameid-format:persistenturn:oasis:names:tc:SAML:2.0:nameid-format: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:oasis:names:tc:SAML:1.1:nameid-format:emailAddressurn:oasis:names:tc:SAML:2.0:nameid-format:persistenturn:oasis:names:tc:SAML:2.0:nameid-format:transient