Re: ADFS with ASP application

From: "Joe Kaplan" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 5 Jan 2007 12:00:16 -0600

ADFS can work here if you use the Windows token model for integration (using
the stuff integrated into the IIS MMC UI). In that mode, ADFS can work with
any app that runs on IIS. The app doesn't need to be .NET 2.0 (although
..NET 2.0 must be installed on the machine for ADFS to be installed and
used).

You would change the setting in IIS from integrated to anonymous, but ADFS
would actually create a Windows token for you with the ADFS agent and the
app would continue to function as if it was working like integrated auth.

The real trick here is coming up with a viable strategy for how you want to
map user tokens (shadow users or shadow groups).

Joe K.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
<viveque.kumar@xxxxxxxxx> wrote in message
news:1168012536.605350.251840@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Hi,

We have a legacy ASP application and we are looking at SSO for an
integration project.

Our application works on Integrated authentication mechanism and the
requirement is that users from other domains when accessing this
application need not sign in again.

So after some research I stumpled upon ADFS to achieve this.

My question is this, given the above scenario, will ADFS work here?
Doesn't ADFS require ASP.NET applications?
Will the application security settings need to be changed from
Integrated to Anonymous?

TIA,
- Vivek

Follow-Ups:
- Re: ADFS with ASP application
  - From: viveque . kumar
- Re: ADFS with ASP application
  - From: viveque . kumar

References:
- ADFS with ASP application
  - From: viveque . kumar

Prev by Date: Re: tokens, claims, policy, AZMAN,etc...
Next by Date: Re: rIDNextRID - should it be on every DC
Previous by thread: ADFS with ASP application
Next by thread: Re: ADFS with ASP application
Index(es):
- Date
- Thread

Relevant Pages

Re: ADFS with ASP application
... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... In that mode, ADFS can work ... integration project. ...
(microsoft.public.windows.server.active_directory)
Re: ADFS Web Agent exception
... You can definitely achieve what you want to do with ADFS. ... you need at least one federation server to ... hosts your ADAM account store, as you'll get more flexibility with how you ... claims integration is a struggle and isn't well documented ...
(microsoft.public.windows.server.active_directory)
Re: ADFS - SAML audience
... my knowledge primarily on my own experiences with testing and deploying ADFS ... Token-based integration gives you more compatibility, ... SSO internally with another product (although ADFS does provide a possible ... If the resource FS issues a SAML token with the aufdience set to the URL ...
(microsoft.public.windows.server.active_directory)
Re: ADFS with ASP application
... So far I was looking at claim aware app, via the Step by step guide, ... .NET 2.0 must be installed on the machine for ADFS to be installed and ... map user tokens. ... integration project. ...
(microsoft.public.windows.server.active_directory)
Re: ADFS with ASP application
... .NET 2.0 must be installed on the machine for ADFS to be installed and ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... integration project. ... Our application works on Integrated authentication mechanism and the ...
(microsoft.public.windows.server.active_directory)