AD FS 2.0 Overview
AD FS enables a decentralized identity sharing between business partners by implementing the WS-Federation protocol and standards such as WS-Trust and Security Assertion Markup Language (SAML). AD FS is used to generate assertions for users. These assertions are sent back to Talend Administration Center, where the user settings and roles are assigned based on the AD FS configuration.
For more information on system requirements and getting started with AD FS, refer to the AD FS documentation.
Installing AD FS 2.0
Before you begin
Talend Administration Center must be configured with HTTPS. For more information, see How to configure a bidirectional secure connection between Talend Studio and Talend Administration Center.
Procedure
Results
ADFS starts automatically if you leave the Start the AD FS 2.0 Management snap-in when this wizard closes checkbox selected.
Configuring AD FS 2.0
Adding Relying Party Trust
Adding Claim Rules
Procedure
What to do next
After the configuration is finished, confirm that the basic authentication type exists in the \inetpub\adfs\ls\web.config file.
Configuring Custom Roles Claim Rule (Example)
Exporting Metadata
Linking Talend Administration Center to an Identity Provider
Procedure
Results
You are able to log in to Talend Administration Center through your Identity Provider.