This section describes how to configure a federation server using Active Directory Federation Services (AD FS) to work with Deep Discovery Director (Internal Network Analytics Version).
Deep Discovery Director (Internal Network Analytics Version) supports connecting to the federation server using AD FS 4.0 and 5.0.
Active Directory Federation Services (AD FS) provides support for claims-aware identity solutions that involve Windows Server and Active Directory technology. AD FS supports the WS-Trust, WS-Federation, and Security Assertion Markup Language (SAML) protocols.
Before you begin configuring AD FS, make sure that:
-
You have a Windows Server installed with AD FS 4.0 or AD FS 5.0 to serve as a federation server.
-
You are logged on to the management console as a Deep Discovery Director (Internal Network Analytics Version) administrator.
-
You have obtained the metadata file from Deep Discovery Director (Internal Network Analytics Version).
-
You have enabled Windows Integrated Authentication on the federation server.
For details, see Enabling Windows Integrated Authentication on AD FS.
-
You have configured web browser settings on each endpoint to trust Deep Discovery Director (Internal Network Analytics Version) and the federation server.
For details, see Configuring Endpoints for Single Sign-on through AD FS.