From the course: Windows Server 2016: Active Directory Federation Services
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Claims-based authentication - Windows Server Tutorial
From the course: Windows Server 2016: Active Directory Federation Services
Claims-based authentication
- [Instructor] One of the most common uses of Federation Services is Claims-Based Authentication. Claims-Based Authentication is a feature that allows a user from one directory to access resources in an entirely different realm. A separate directory without the need for duplicate user accounts between locations. For example, if I was a user in the Landon Cafe domain, and I need it to access a resource in the Landon hotels domain, I would need some means of identifying myself as a trusted requester of the information. Landon Hotels has no knowledge of who I am. But if they trust Landon Cafe to vouch for me, I can be granted access to the resource. The way Landon Cafe will vouch for me is by handing the assigned token that claims my identity. Let's look at one way this might play out. I've used these companies as examples in other courses. Landon Cafe is the independently owned and operated restaurant located inside each of the Landon Hotel locations. So there's a need for exchange…