Overview of Active Directory Federation Services
Lighthouse can help you leverage the cloud with Active Directory Federation Services (ADFS) for Office 365. ADFS allows IT organizations to set up and participate in a standards-based identity federation across an extranet. ADFS achieves this by securely sharing digital identity and entitlement rights across security and enterprise boundaries. When a user needs to access a Web application from one of its federation partners, the user’s own organization is responsible for authenticating the user and providing identity information in the form of “claims” to the partner that hosts the Web application. The hosting partner uses its trust policy to map the incoming claims to claims that are understood by its Web application, which uses the claims to make authorization decisions.
Single Sign-on & Security Using ADFS
•Create a Single Sign-On (SSO) environment for any user, allowing organizations to
share identities in a standardized way while reducing the hassle of B2B partnering.
•Centralized federated partner management
performed using the ADFS Microsoft Management Console (MMC) snap-in.
•Partner user account management not required so your organization no longer needs to change the credentials for the partner’s users.
•Web Services interoperability makes it possible to use for environments that do not use Windows to federate with Windows environments. If your organization has federated on-premises Active Directory with Azure Active Directory using ADFS, the following options for using Azure Multi-Factor Authentication are available:
- Secure cloud resources using Azure Multi-Factor Authentication or Active Directory Federation
- Secure cloud and on-premises resources using Azure Multi-Factor Authentication Server
We are cloud and hybrid cloud computing experts with vast knowledge in IT security and identity. Getting started is easy and we can answer any questions you may have. Contact us today.