Scenario 6: Federated authentication: TotalAgility Azure with Azure AD and on-premise AD
The following diagram describes claims-based authentication where TotalAgility Azure uses federated security to authenticate with Azure AD which itself synchronizes with an on-premise installation of Windows Server AD FS 2.0.
|
The Client logs in to the domain (Windows Server AD). |
|
The Client accesses TotalAgility. |
|
Azure AD provides STS that authenticates the Client and returns a claims token for TotalAgility. |
|
Azure AD submits the claims token to TotalAgility (relying party) via the Client. |
|
TotalAgility uses claims in the token. uses the token issued by STS and extracts the claims from the token. |