![]() How enterprise AD FS worksĪctive Directory Federation Services aims to reduce the complexity around password management and guest account provisioning, and it has taken on additional importance as organizations and employees rely more on software as a service ( SaaS) and web applications. ![]() The host can then make authorization decisions based on the claims. When users attempt to access a certain web app from one of their trusted business partners - also known as a federation - their organization must authenticate the employee's identity information via claims to the host of the web app. AD FS shares the user's identity and access rights, also known as claims, across the organization's security boundaries. Through SSO capabilities, AD FS can authenticate a user to different, related web apps during a single online session. AD Federation Services builds upon this functionality to authenticate users on third-party systems, such as another company's extranet or a service hosted by a cloud provider. It also provides SSO access to corporate applications. Microsoft's traditional Active Directory technology stores usernames and passwords and uses them to manage and secure access to computers on a Windows domain. Active Directory Federation Services (AD FS) is a feature of the Windows Server operating system (OS) that extends end users' single sign-on ( SSO) access to applications and systems outside the corporate firewall.
0 Comments
Leave a Reply. |