Scenario 3: Federated authentication: TotalAgility Azure with on-premise AD
The following diagram describes claims-based authentication where TotalAgility Azure or TotalAgility on-premise uses federated security to authenticate with a remote on-premise installation of Windows Server AD FS 2.0.
|
The Client accesses TotalAgility. |
|
Windows Server AD with AD FS 2.0 provides an STS that authenticates the Client and returns a claims token. |
|
Windows Server AD submits the claims token to TotalAgility via the Client. |
|
TotalAgility uses the token issued by STS and extracts the claims from the token. |