• Home

  • Documents

  • Claims Based Authentication Using ADFS 2.0 Presented By: Shannon Bray

If you can't read please download the document

Claims Based Authentication Using ADFS 2.0 Presented By: Shannon Bray

Embed Size (px)

Citation preview

  • Slide 1
  • Claims Based Authentication Using ADFS 2.0 Presented By: Shannon Bray
  • Slide 2
  • MCT, MCPD, MCITP, MCTS, MCAD, MCDBA MCM Candidate (Oct. 2010 Rotation) Technical Architect Planet Technologies Colorado SharePoint Users Group (COSPUG) Twitter:@NoIdentity29 Email:[email protected]
  • Slide 3
  • Clayton Cobb MVP, MCITP, MCTS Technical Architect Planet Technologies Colorado SharePoint Users Group (COSPUG) Twitter:@Warrtalon Email:[email protected]
  • Slide 4
  • Agenda Introduction to CBA How does ADFS 2.0 Come Into Play? Farm Configurations Step by Step Common Pitfalls Questions and Answers
  • Slide 5
  • What is CBA? Geneva is Microsofts next generation identity and access management platform built on Active Directory directory services. Geneva provides claims-based access and single sign-on for on-premises and cloud-based applications in the enterprise, across organizations, and on the Web. Geneva leverages claims which describe identity attributes and can be used to drive application and other system behaviors with an open architecture that implements the industrys shared Identity Metasystem vision.
  • Slide 6
  • Benefits Supports Existing Identity Infrastructure Active Directory LDAP, SQL Federation Gateways WebSSO and Identity Management Systems Enables Automatic, Secure Identity Delegation Supports no credential connections to external web services Consistent API to develop SharePoint Solutions
  • Slide 7
  • Identity What is Identity? Set of attributes to describe a user such as name, e-mail, age, group membership, etc. What is a Claim? Some authority that claims to have the attribute and its value
  • Slide 8
  • User Identity is a set of Claims Why we say claim and not attribute? FaceBook & DOL have the age attribute FaceBook claims that I am 18, while DOL claims I am 38. If a claim was based on age, which would you trust?
  • Slide 9
  • User Identity is a set of Claims Why we say claim and not attribute? FaceBook & DOL have the age attribute FaceBook claims that I am 18, while DOL claims I am 38. If a claim was based on age, which would you trust?
  • Slide 10
  • Identity Normalization NT Token SAML 1.1 ASP.NET SAML Token (CBA) SP USER Classic Claims NT Token
  • Slide 11
  • The Authentication Process
  • Slide 12
  • How does ADFS 2.0 Come Into Play?
  • Slide 13
  • Farm Configurations Internal (Corp) ADFS 2.0 AD w/ DNS SharePoint 2010 SQL External ADFS 2.0 AD w/ DNS
  • Slide 14
  • Step by Step ADFS 2.0 Wizard Server Certificates
  • Slide 15
  • Step by Step - Demo
  • Slide 16
  • Common Pitfalls Kerberos SPTITI ADFS 2.0 Settings Not So Random Errors
  • Slide 17
  • The Short Story CBA ADFS 2.0 Common Pitfalls http://shannonbray.wordpress.com
  • Slide 18
  • Questions and Answers?
  • Slide 19
  • THANK YOU!!!

ADFS Integration Guidelines - Marcombox

ADFS Integration Guidelines - Marcombox

Documents
Troubleshooting Federation, ADFS, and More

Troubleshooting Federation, ADFS, and More

Technology
2016- Review with AMUL Adfs

2016- Review with AMUL Adfs

Art & Photos
ADFS and Shib

ADFS and Shib

Documents
ADFS Operations Guide

ADFS Operations Guide

Documents
ADFS Step-by-Step Guide

ADFS Step-by-Step Guide

Documents
Implementing adfs & hybrid sp

Implementing adfs & hybrid sp

Presentations & Public Speaking
ADFS Step by Step Guide

ADFS Step by Step Guide

Documents
ADFS intranet scenarios - Sevecek

ADFS intranet scenarios - Sevecek

Documents
DELTA ADFS - ShareParts Documents/DELTA ADFS as... · ADFS Deployment ADFS setup in Windows Server 2008 has been greatly improved; it now uses configuration wizards for many of the

DELTA ADFS - ShareParts Documents/DELTA ADFS as... · ADFS Deployment ADFS setup in Windows Server 2008 has been greatly improved; it now uses configuration wizards for many of the

Documents
ADFs as Liferafts for NQTs

ADFs as Liferafts for NQTs

Documents
SSO using ADFS - academy.questback.com

SSO using ADFS - academy.questback.com

Documents
Exploration of SharePoint 2013 Requirements for Contoso · PDF fileExploration of SharePoint 2013 Requirements for Contoso By: Shannon Bray Microsoft Certified Solutions Master

Exploration of SharePoint 2013 Requirements for Contoso · PDF fileExploration of SharePoint 2013 Requirements for Contoso By: Shannon Bray Microsoft Certified Solutions Master

Documents
Integrating Ideanote with ADFS - HelpDocs...Integrating Ideanote with ADFS To setup Ideanote with ADFS please follow these steps. 1. Go to AD FS management and open the "Relying Party

Integrating Ideanote with ADFS - HelpDocs...Integrating Ideanote with ADFS To setup Ideanote with ADFS please follow these steps. 1. Go to AD FS management and open the "Relying Party

Documents
Netop Portal ADFS & Azure AD Integration · 2018-08-22 · Netop Portal ADFS & Azure AD Integration 22.08.2018 13 9. The application should now be functional ADFS ADFS integration

Netop Portal ADFS & Azure AD Integration · 2018-08-22 · Netop Portal ADFS & Azure AD Integration 22.08.2018 13 9. The application should now be functional ADFS ADFS integration

Documents
Single Sign-On met ADFS

Single Sign-On met ADFS

Education
Setup adfs - Zendesk

Setup adfs - Zendesk

Documents
SharePoint 2013 and ADFS

SharePoint 2013 and ADFS

Technology
ADFS + IAM

ADFS + IAM

Technology
Oshkosh Corporation ADFS Darrell Williams October 2017 Supplier... · 2017-10-12 · ADFS. Darrell Williams. October 2017 . MISSION DRIVEN: To Move the World at Work ADFS - Active

Oshkosh Corporation ADFS Darrell Williams October 2017 Supplier... · 2017-10-12 · ADFS. Darrell Williams. October 2017 . MISSION DRIVEN: To Move the World at Work ADFS - Active

Documents
Joint 4th ADFS Annual Conference and King’s Charcot …a-dfs.org/fileadmin/user_upload/ADFS/Final_programme_edited_for... · ADFS organises meetings and conferences and supports

Joint 4th ADFS Annual Conference and King’s Charcot …a-dfs.org/fileadmin/user_upload/ADFS/Final_programme_edited_for... · ADFS organises meetings and conferences and supports

Documents
ADFS Auth Slide 1

ADFS Auth Slide 1

Documents
ADFS の vNext

ADFS の vNext

Technology
Adfs azure

Adfs azure

Documents
ADFS Install

ADFS Install

Documents
ADFS Export Brochure - 2021

ADFS Export Brochure - 2021

Documents
Adfs Overview

Adfs Overview

Documents
Configuring Microsoft ADFS for SSO integration with Blue Jeans€¦ · Windows Server 2008 R2 installations require ADFS 2.0 including the ADFS Rollup 2 update. ... 8 ADFS Configuration

Configuring Microsoft ADFS for SSO integration with Blue Jeans€¦ · Windows Server 2008 R2 installations require ADFS 2.0 including the ADFS Rollup 2 update. ... 8 ADFS Configuration

Documents
Shannon Bray Technical Architect Planet Technologies SESSION CODE: OSP310 Mike Watson Principal Consultant SeriousLabz

Shannon Bray Technical Architect Planet Technologies SESSION CODE: OSP310 Mike Watson Principal Consultant SeriousLabz

Documents
ADFS Acorn -User Guide

ADFS Acorn -User Guide

Documents