ADFS Diagnostic Tool Instructions?

Все ответы

• 14 ноября 2008 г. 8:00

  Модератор

   

   
  

  0
   

   

  Hi,

   

  For your scenario, serverb.domaina.com is FS-A; FS-R is servera.domaina.com;

   

  In a typical transaction, an account-side FS (FS-A) retrieves user attributes from Active Directory, authenticates the user against Active Directory, generates a collection of claims for use in the access request, and issues a security token which includes the appropriate claims.

   

  Claims are statements made about users, understood by both parties in a federation, that are used for authorization purposes in an application (e.g, if Joe is a manager, then Joe’s access request may include the “manager” claim, which results in certain access rights). Based on the type of client, the FS-A returns the security token either to the FS Proxy or to the client. A second FS at the resource (FS-R) validates the token for authenticity, then consumes the token, passing the enclosed claims to an application for use in making authorization decisions.

   

  I also search the following resources about ADFS. I list them here and hope these would be helpful:

   

  Need help Troubleshooting ADFS? Check out the ADFS Diag Tool...

  http://blogs.technet.com/adfs_documentation/

   

  ADFS Product Support Blog

  http://blogs.technet.com/adfs/

   

  Introduction to Active Directory Federation Services

  http://www.microsoft.com/windowsserver2003/techinfo/overview/adfsoverview.mspx

  • Помечено в качестве ответа Richard AT R3 Portfolio 14 ноября 2008 г. 8:16
  • Изменено Morgan Che [MSFT]Moderator 14 ноября 2008 г. 8:20 addd
  •  
  • Ответить
  • Цитировать

   
• 14 ноября 2008 г. 8:16

   

   
  

  0
  Thanks.
  • Ответить
  • Цитировать