I have configured SAML token service for sharepoint 2013 portal using ADFS in my dev environment for claims based authentication. it is working proper as needed.
I am able to login using AD user but there is mismatch of permission assigned to user in portal.
Example: i have a user1 account which have been added in sharepoint 2013 portal as site members.
whenever i login using user1 account in portal, user1 can see site setting actions including all setting under it which is not supposed to be happened as given site member permission. same thing is happening for all users if i add users with full read permission to sharepoint portal under user policy in CA.
How can i fix user permissions for AD users to sharepoint poratl? can i assign permission to users in sharepoint portal which using SAML authentication?