Federated Document Collaboration Using Microsoft Office SharePoint Server 2007 and AD FS 2.0
Applies To: Active Directory Federation Services (AD FS) 2.0
This guide walks you through setup of a small test lab environment that you can use to evaluate the next generation of Microsoft® federated identity technologies. This guide is intended for information technology (IT) professionals and system architects who want to implement secure collaboration between organizations using Microsoft Office SharePoint® Server 2007 and Active Directory® Federation Services (AD FS) 2.0. This guide provides a quick demonstration of the features, functionality, and interoperability capabilities of AD FS 2.0 and Windows® Identity Foundation (WIF). The instructions in this guide should take approximately 90 minutes or less to complete.
About this guide
This guide provides instructions for setting up federated identity technologies in a small test lab with virtual servers and a Hyper-V™-enabled host server computer running the Windows Server® 2008 R2 operating system. The purpose of this guide is to describe a solution that uses the federated identity capabilities of Windows-based federated identity technologies to meet the demands of a fictional business-to-business (B2B) scenario with the following requirements:
Two companies have a business partner relationship. One of the companies, Contoso Pharmaceuticals, wants to give access to a SharePoint site that it hosts to some of the employees of the other company, Fabrikam. Traditionally, this might have required administrators at Contoso to create new Active Directory user accounts to provide the required access for the Fabrikam partner employees. Another potential consequence of the SharePoint-based collaboration is that the SharePoint site itself requires configuration so that participating users of both companies can have the appropriate level of site access.
To maximize your chances of completing the objectives of this guide successfully, it is important that you do all of the following:
Complete the steps in this guide in the order in which they are presented.
Use the exact computer, user, group, company, claim, and domain names that this guide specifies.
Important
Any modifications that you make to the configuration details in this guide may affect or limit your chances of setting up this lab successfully the first time.
Microsoft has tested this guide successfully using Windows Server 2008 Hyper-V virtualization technology.
The instructions in this guide should take approximately 90 minutes or less to complete. Your time to complete the steps in this guide may vary, depending on whether you have to set up a computer that is suitable for hosting the virtual lab environment.