- Podcast
- Research
- Search
- Security
- Technology
- Video
- AIM
- Alfresco
- Collaboration
- ECM
- ESX
- Hyper-V
- IE8
- Internet Explorer
- Iomega
- Linux
- MIX08
- Microsoft
- NAS
- Nokia
- REV
- S60
- SaaS
- Sharepoint
- Silverlight
- Sony Ericsson
- VMware
- Windows Live
- YouTube
- Advertising
- Backup
- Beta Test
- Blogs
- Convergence
- Display
- Enterprise
- Humans
- Instant Messaging
- Multimedia
- Networking
- Open Source
- Phishing
Provide SharePoint Single Sign-On with Active Directory Federation Services
ADFS Deployment
If you were one of the early explorers of ADFS you probably remember that you performed most of the ADFS setup and configuration in Windows Server 2003 R2 using the Microsoft Management Console (MMC). That process required detailed guidance to ensure the configuration was done properly. Fortunately, ADFS setup in Windows Server 2008 has been greatly improved; it now uses configuration wizards for many of the components.
After properly planning your ADFS deployment, you can install your federation servers. To install a federation server, use the "Add Roles" wizard to add the Federation Service role (see Figure 3).
ADFS uses SSL for federation communication, so you'll need to obtain certificates via your own or third-party public-key infrastructure (PKI) providers. However, you can use self-signed certificates for test purposes and deployments (see Figure 4). When installing your federation server you will need both a Server Authentication Certificate and a Token Signing Certificate.
Digg
del.icio.us
Newsvine
Facebook
Google
LinkedIn
MySpace
Reddit
Slashdot
StumbleUpon
Technorati
Twitter
Windows Live
YahooBuzz
FriendFeed
You will need to install a Federation server on both your internal LAN and in your perimeter network. According to the design scheme (see Figure 2), the internal federation server acts as the account federation server, while the perimeter federation server acts as the resource federation server.
After installing the federation servers, you need to install the ADFS Web Agent on the SharePoint server (see Figure 5). Doing that lets the SharePoint server use federation claims for authentication.
ADFS Configuration
After completing the federation server installations, you need to configure the correct settings on each one. If you used the self-signed certification option above, you will also need to install the certificate into the trusted root CA store for the computer account for each federation server and for the SharePoint server.
Extending database skills is fast and easy with new features and this e-kit. Learn how and start taking advantage of easier DB2 administration features today.
Most Popular Stories
- 1 Building SharePoint Suggestion Boxes and Soliciting Anonymous Feedback
- 2 Moving a Document to the SharePoint 2010 Records Center
- 3 Solve Item-Level Permission Performance Problems in SharePoint
- 4 Developing SharePoint Solutions in Visual Studio Using WSPBuilder
- 5 Using the Event Handler in SharePoint 2010
- 6 Prepare Your SharePoint Data Carefully, Ediscovery Experts Warn
- 7 Design a Form to Collect Customer Information Using InfoPath and SharePoint 2010
Partners
The Network for Technology Professionals
Legal Notices, Licensing, Permissions, Privacy Policy.
Advertise | Newsletters | E-mail Offers
Whitepapers and eBooks
|
PDF: Security Reference Guide PDF: Data and Identity Security PDF: Secure Remote Access 101 |
Helpful Cloud Computing Resources MORE WHITEPAPERS, EBOOKS, AND ARTICLES |
Webcasts
|
User Experience Management Indicators for Business and IT Success Ensuring Performance Meets Business and Web User Needs |
MORE WEBCASTS, PODCASTS, AND VIDEOS |
Downloads and eKits
|
IBM DB2 e-kit for Database Professionals: Extending Skills is Fast and Easy Get BlackBerry Enterprise Server Express for Free |
MORE DOWNLOADS, EKITS, AND FREE TRIALS |