Technofolies Brussels, Oct 29 & 30
Technofolies
Welcome Consumerization.
Demo
Why Cloud Services
Kerberos <token
AD FS Definitions AD FS = Active Directory Federation Service! Service on top of AD. Replace the Kerberos token by a trusted token. The token contains a collection of claims (Key – Value). Trust is based on certificates. Delagate the authorization from the application to an external authority. Service Token Service (STS) is the application delivering the token. AD FS is a STS. Relaying Party (RP) is a backend application using token from the STS.
AD FS Relaying parties
AD FS Tool
AD FS Active Mode Domain Controller 1 3 Kerberos Service Ticket Trust ADFS SAML Token
AD FS Passive Mode Domain Controller 1, Request a Page 2, Redirect Kerberos Service Ticket ADFS 3.0 WWW 3 SAML Token 4 5
AD FS Full Picture Domain Controller 1, Request a Page 2, Redirect Kerberos Service Ticket ADFS 3.0 WWW 3 SAML Token
AD FS Internet Authentication Domain Controller 1, Request a Page 2, Redirect UserName / Password MultiFactor Auth. E-Token, etc… ADFS 3.0 WWW 3 SAML Token
AD FS Cloud Service Domain Controller 1, Request a Page 2, Redirect UserName / Password MultiFactor Auth. E-Token, etc… ADFS 3.0 WWW 3 SAML Token Kerberos Service Ticket Certificate Delegation Authentication.
Distributed Architecture WWW Kerberos Service Ticket UserName / Password MultiFactor Auth. E-Token, etc…
AD FS Cross Companies WWW Trusted AD FSClient Company AD FS Service Company 1 &
AD FS Environment splitting Domain Controller Dev TestAcc Prod.
AD FS Limitation
TechNet
TechNet on Twitter
Azure trial for free Get your free Azure trial at Azure.com/trial
Contacts Gilles Flisch Arnaud JUND Vincent FIEVEZ See you next year 2015
Note