Custom SSO with SAML2 and ADFS

0
votes

I am looking for Single sign on (SSO) with SAML2 tokens and I have to used ADFS. I can't use WIF.

I googled a lot to understand SSO, SAML2 and ADFS, now I have some doubts which I am not getting.

Scenario: The applications are asp.net MVC application 1. App-A(Windows Authentication) : hosted and it is using ADFS. 2. APP-B(Form Authentication): authenticates the user using the UID and PWD stored in DB.

Do I need a intermediate application to accept the SAML2 token and process it(similar to Identity provider) or it can be done in the App-A itself?

In the App-B what are the things I have to implement to make it aware of SAML2 request(do i need to implement custom handler)?

please help me to choose the right things for the implementation.

--Thanks--

1
asp.net-mvcsingle-sign-onsaml-2.0adfs2.0

1 Answers

1
votes

You need a SAML stack for your application.

Refer SAML : SAML connectivity / toolkit and the links in that entry.

For A, perhaps you can use the WIF SAML extension mentioned in the article above?

For B, you need to rip out the DB authentication and add the SAML functionality as for A or else have a look at Identity Server which you can federate with ADFS and which also authenticates using a DB (but doesn't support SAML itself).