Mapping Your Deployment Goals to an ADFS Design
Applies To: Windows Server 2003 R2
After you finish reviewing the existing Active Directory Federation Services (ADFS) deployment goals and you determine which goals are related to your specific deployment, you can map those goals to a specific ADFS design. For more information about ADFS predefined deployment goals, see Identifying Your ADFS Deployment Goals.
Use the following table to determine which ADFS design maps to the appropriate combination of ADFS deployment goals for your organization. This table refers only to the three primary ADFS designs as described in this guide. However, you can create a hybrid or custom ADFS design by using any combination of the ADFS deployment goals to meet the needs of your organization.
| ADFS deployment goal | Web SSO design | Federated Web SSO design | Federated Web SSO with Forest Trust design |
|---|---|---|---|
Provide federated access for your employees on the corporate network |
No |
Yes, in the account partner |
Yes, in the account partner |
Provide federated access for your remote employees on the Internet |
No |
Yes, optional in the account partner |
Yes, optional in the account partner |
Provide single-sign-on access for customers to your hosted applications |
Yes |
No |
No |
No |
Yes, in the resource partner |
Yes, in the resource partner |