I've done an exhaustive search over the past 2 days trying to find answers to all my questions and I believe I've hit a wall here. I sincerely apologize if this has been answered correctly elsewhere, perhaps I haven't been asking the right question(s). This question seems to come close to what we need, however it is referring to IdentityServer2 and we have been unable to find the same admin panel described in the video linked there.
Here is a very general overview of the scenario we'd like to achieve
User logs in on Organization A's webapp and gets authenticated via some STS against a SQL database.
User clicks a link on Organization A's webapp to make a jump over to Organization B's webapp
Organization B's ADFS server see's the token from STS and doesn't prompt the user for credentials, instead just allowing them to utilize Organization B's webapp
We'd like to just go with ADFS, however Organization A does not want to move their user information from SQL over to AD.
We've setup an ADFS server locally for testing and got it working with our local AD users. We'd like to utilize this to represent Organization B's ADFS server that would grant access to Organization B's webapp.
We've also got IdentityServer3 up and running locally and authenticating. This would represent Organization A's STS.
1) First and foremost...Is this possible?
2) Is this a reasonable architecture or are we going about this all wrong?
3) If possible & reasonable; What exactly do we need IdentityServer3 to provide to the partner's ADFS server?
Thanks in advance
