ADFS helps you provide access to your clients, partners, or vendor who reside in other security realms. You can create a user account in your domain for the other organization or you can set up a claims-based access control authorization model to maintain application security and implement federated identity.
- Select Configuration from the top navigation bar.
- Select AD & directory store option from the left sidebar.
- Click on +Add AD & directory store.
- In the Directory Name, enter the name of the ADFS server.
- Select Authentication Type as Windows Active Directory.
- Select Directory Store Type as SAML.
- In Issuer, enter the IP address of the Sectona PAM server on which the ADFS logon is to be enabled.
- In Logon URL, enter the path of the ADFS in the format:
- In Certificate, click on the enable icon and enter the certificate that has been used for the ADFS server. The format for the certificate should be '.pfx'.
- In Certificate Password, enter the password for the certificate issued.
- Make sure that the status of the application is Active.
- Click on Save.
- Navigate to System on the top navigation bar.
- Click on System Default from the left sidebar.
- Select User Logon Show ADFS Option and in the Config value enter "1". Click on Update.