[英]How to sign-in to ADFS WIF federation AND Form auth on the same page with login (user/password) text-boxes?
How to sign-in to ADFS WIF federation AND Form auth on the same page with login (user/password) text-boxes? 如何使用登录(用户/密码)文本框在同一页面上登录ADFS WIF联合身份验证和表单身份验证?
Now I can use a link to redirect to adfs login with a prompt box to input domain user name and password. 现在,我可以使用一个链接来重定向到adfs登录,并在提示框中输入域用户名和密码。 Can I use the same (user/password) text-boxes as form auth?
我可以使用与身份验证相同的(用户/密码)文本框吗? So I don't wanna use the prompt box?
所以我不想使用提示框?
ps: another question, how can i do to pass auth automatically when i login in the domain of which supplies the adfs without inputting(SSO) User and Pass? ps:另一个问题,当我在不输入(SSO)用户和密码的情况下登录提供adfs的域时,如何自动通过身份验证?
Thanks! 谢谢!
ADFS supports several ways of accepting user's credentials. ADFS支持多种接受用户凭据的方式。 The one with "prompt box" is most likely integrated or basic authentication.
具有“提示框”的那个很可能是集成身份验证或基本身份验证。 It is configurable on ADFS side: http://social.technet.microsoft.com/wiki/contents/articles/1600.ad-fs-2-0-how-to-change-the-local-authentication-type.aspx
它可以在ADFS端进行配置: http : //social.technet.microsoft.com/wiki/contents/articles/1600.ad-fs-2-0-how-to-change-the-local-authentication-type.aspx
If you need to configure forms authentication as a preferred option change in ADFS Web agent web.config order of local authentication types. 如果需要将表单身份验证配置为首选选项,请按本地身份验证类型的ADFS Web代理web.config顺序更改。 Set Forms as a the first:
将表单设置为第一个:
<microsoft.identityServer.web>
<localAuthenticationTypes>
<add name="Forms" page="FormsSignIn.aspx" />
<add name="Integrated" page="auth/integrated/" />
<add name="TlsClient" page="auth/sslclient/" />
<add name="Basic" page="auth/basic/" />
</localAuthenticationTypes>
Regarding the SSO, problem. 关于SSO,问题。 It depends on browser:
这取决于浏览器:
in IE you need to add ADFS URL to Trusted Sites or/and make sure that Trusted Sites zone in IE allows to send windows credentials. 在IE中,您需要将ADFS URL添加到“受信任的站点”或/并确保IE中的“受信任的站点”区域允许发送Windows凭据。 See: http://docs.acl.com/ax/310/index.jsp?topic=/com.acl.ax.admin.help/system_administration/t_configuring_internet_explorer_for_integrated_windows_authentication.html
请参阅: http : //docs.acl.com/ax/310/index.jsp?topic = / com.acl.ax.admin.help / system_administration / t_configuring_internet_explorer_for_integrated_windows_authentication.html
Chrome assumes that any page that contains '.' Chrome浏览器认为任何包含“。”的页面。 - dots in address is not secure enough to provide SSO, so probably you'll need to set up a dotless alias for your ADFS host.
-地址中的点不足以提供SSO,因此可能需要为ADFS主机设置无点别名。
in Firefox you need to add ADFS URL network.automatic-ntlm-auth.trusted-uris See: http://sivel.net/2007/05/firefox-ntlm-sso/ 在Firefox中,您需要添加ADFS URL network.automatic-ntlm-auth.trusted-uris,请参阅: http ://sivel.net/2007/05/firefox-ntlm-sso/
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.