(0) exportieren Drucken
Alle erweitern

Checklist: Implementing a Web SSO Design

Letzte Aktualisierung: Dezember 2006

Betrifft: Windows Server 2003 R2

This parent checklist includes cross-reference links to important concepts about the Web Single-Sign-On (SSO) design. It also contains links to subordinate checklists that will help you complete the tasks that are required to implement this design.

Complete the tasks in this checklist in order. When a reference link takes you to a conceptual topic or to subordinate checklist, return to this topic after you review the conceptual topic or complete the tasks in the subordinate checklist so that you can proceed with the remaining tasks in this checklist.

Prüfliste Checklist: Implementing a Web SSO Design


  Task Reference

Review important concepts and examples for the Web SSO design and determine which Active Directory Federation Services (ADFS) deployment goals you can use to customize this design to meet the needs of your organization.

The Web SSO design does not require that you set up partners in the Federation Service.

Konzeptionsthema Web SSO design

Konzeptionsthema Web SSO example

Konzeptionsthema Identifying Your ADFS Deployment Goals


Review the hardware, software, certificate, Domain Name System (DNS), account store, and client requirements for deploying ADFS in your organization.

Konzeptionsthema Appendix A: Reviewing ADFS Requirements


According to your design plan, install one or more federation servers in the corporate network or in the perimeter network.

The Web SSO design requires only one federation server to function successfully. A single federation server acts in both the account partner role and the resource partner role.

Prüflistenthema Checklist: Installing a federation server


(Optional) Determine whether or not your organization needs a federation server proxy in the perimeter network.

Prüflistenthema Checklist: Installing a federation server proxy


Install one or more ADFS-enabled Web servers to host your preferred federated application using the appropriate ADFS Web Agent.

The Web SSO design requires at least one ADFS-enabled Web server.

Prüflistenthema Checklist: Installing an ADFS-enabled Web server


Depending on your Web SSO design plan and how you intend to use it, install either an Active Directory account store or an Active Directory Application Mode (ADAM) account store in the Federation Service.

Prüflistenthema Checklist: Configuring the account partner organization


For SSO, incoming claims must be associated with organization group claims or custom claims that reside in the Federation Service.

Thema Vorgehensweise Create an organization group or custom claim


If you are an administrator in the resource partner organization, install either a claims-aware application or a Windows NT token-based application, or both, using the appropriate checklist.

The account partner administrator does not have to complete either of the following checklists.

Prüflistenthema Checklist: Installing a claims-aware application

Prüflistenthema Checklist: Installing a Windows NT token-based application

Fanden Sie dies hilfreich?
(1500 verbleibende Zeichen)
Vielen Dank für Ihr Feedback.


Microsoft führt eine Onlineumfrage durch, um Ihre Meinung zur MSDN-Website zu erfahren. Wenn Sie sich zur Teilnahme entscheiden, wird Ihnen die Onlineumfrage angezeigt, sobald Sie die MSDN-Website verlassen.

Möchten Sie an der Umfrage teilnehmen?
© 2014 Microsoft