问题
I want to configure ADFS to create single signon service and use the same for another web application. I am very new to this. Please suggest me how to do it or at least where to start. Thanks in advance for your time.
回答1:
You can only install on Windows Server.
If you want ADFS 2.0 you need Server 2008 R2.
Install
The latest (ADFS 3.0) is on Server 2012 r2.
Update
Is the application Java or .NET?
You need a SAML client side stack - refer SAML : SAML connectivity / toolkit.
You then take the SAML client metadata and import into ADFS as a RP (SP) and take the ADFS metadata and import into your application as a CP (IDP).
回答2:
few months ago i had asked this question, I forget to answer how I achieved this :
- We have created a test site where we have used form-authentication technique to authenticate any user, It requires an authentication token to authorize any user on application.
- So for creating this token we have to communicate with the Identity provider (IP) to get authenticated user details.
- For communicating with the IP server we have used SAML protocol to send and receive requests and responses.
- IP already provided us their end point details and certificate which is required to send and receive the SAML Packet.
- We have also sent our End points, certificate and claim rules so that they can configure our test site with their ADFS server as a relying party.
- As the result of all this we are able to redirect an anonymous access on our site to their ADFS server in the form of a SAML request.
- They are also able to process it and sending us response with all details of user like name, username, email etc.
- We have used third party .dll to generate and process the SAML request, the name is : ComponentSpace (http://www.componentspace.com/).
来源:https://stackoverflow.com/questions/32359232/how-can-i-configure-adfs-on-my-windows-server-machine-system