ADFS


 * Wikipedia: https://en.wikipedia.org/wiki/Active_Directory_Federation_Services

ADFS (Active Directory Federation Services) is een product van Microsoft waarmee je single-sign-on kunt inrichten tussen cloud-applicatie.

Vragen

 * Hoe werkt ADFS precies?
 * Hoe zit het met certificaten? Waarschijnlijk vertrouwen systemen elkaar via certifcaten.
 * Klopt het dat je in ADFS kunt instellen dat certificaten periodiek verversen en is het mogelijk dat andere applicaties dat certificaat dan weer automatisch verwerken? Waarschijnlijk is dit inderdaad het geval.

To-do

 * In de volgende tekst, afkomstig van Wikipedia, kun je meer info vinden over ADFS: to provide users with single sign-on access to systems and applications located across organizational boundaries. It uses a claims-based access-control authorization model to maintain application security and to implement federated identity.[1] (Claims-based authentication involves authenticating a user based on a set of claims about that user's identity contained in a trusted token. Such a token is often issued and signed by an entity that is able to authenticate the user by other means, and that is trusted by the entity doing the claims-based authentication.) It is part of the Active Directory Services.