使用ADFS单一登录
[英]Single Sign On using ADFS
问题描述
We are wanting to setup SSO to multiple web applications from one central portal. 
我们希望从一个中央门户将SSO设置为多个Web应用程序。
Right now we have ADFS up and running and are able to login using the public web address, A&A to AD works just fine - and we can get to a little portal we made. 现在,我们已经启动并运行了ADFS,并且能够使用公共网址登录,A&A到AD的运行正常-我们可以进入我们创建的一个小门户。
What we would like to do is provide users access to specific web applications they have permissions to access (based on AD). 我们想做的是为用户提供他们有权访问的特定Web应用程序的访问权限(基于AD)。 The links would appear upon initial SSO into the portal, and the user would click a link to proceed to the web application (but would SSO into the web application). 链接将在最初的SSO出现在门户中时出现,并且用户将单击链接以继续访问Web应用程序(但SSO会进入Web应用程序)。
Does anyone know how to do accomplish this? 有人知道该怎么做吗?
1 个解决方案
解决方案1
1 已采纳 2014-08-06 19:41:08
Set up ADFS to pass the token groups to the portal as roles using ADFS claims rules. 设置ADFS,以使用ADFS声明规则将令牌组作为角色传递到门户。
Then use these roles to display the appropriate links to applications. 然后使用这些角色显示到应用程序的适当链接。
The applications are configured as RP to ADFS. 这些应用程序被配置为ADFS的RP。
Clicking on the link navigates to the application --> not signed in --> ADFS --> already signed in --> SSO back to application. 单击链接导航到应用程序->未登录-> ADFS->已登录-> SSO回到应用程序。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.