问题
Does anyone have any experience with this at all? I'm trying to link up my ACS with my companies local active directory, so obviously I'm going to need an STS that relates to this active directory for authentication/tokens.
Do I need to create my own custom STS or is there a tool out there somewhere that makes this simpler?
Any suggestions appreciated, hopefully someone's done this before.
回答1:
ACS is normally a Federation Provider. It doesn't have an underlying AD.
You need Active Directory Federation Services 2.0. This is an Identity Provider and sits on top of your local AD and federates with ACS.
(Note that ADFS can only authenticate against AD but can get attributes from AD, LDAP's and SQL Server for authorisation)
来源:https://stackoverflow.com/questions/5499273/windows-azure-acs-with-windows-active-directory-2003