Windows Identity Foundation is Required for WS-Trust and WS-Federation
Introduction
The Windows Identity Foundation framework must be installed on the SecureAuth IdP Appliance before Web Services (WS) protocols can be utilized for enterprise Single Sign-on (SSO).
WS protocols include WS-Trust, which handles procedures for signing, encrypting, validating, and renewing authentication tokens, and WS-Federation, which defines the method for transporting security tokens. SecureAuth IdP introduced WS-Trust support in v7.1 and WS-Fed support in v6.4.1.
The Windows Identity Foundation framework is used in building identity-aware applications. This framework abstracts the WS-Trust and WS-Federation protocols and presents developers with APIs to include in claims-aware applications and, if needed, security token services (STS)s. Applications can use WIF to process tokens issued from STSs, such as AD FS 2.0 and ACS, and make identity-based decisions at the Web application or Web service.
Applies to
SecureAuth IdP Version | OS Version |
---|---|
7.x+ |
|
Installation Procedures
The Windows Identity Foundation framework must be installed on the SecureAuth IdP Appliance in order for WS-Trust and WS-Federation features to function properly.
Find the WIF framework installer in the SecureAuth IdP v6.4.1+ update package, or obtain it directly from theMicrosoft Download Center.
Note that after installation, the IIS World Wide Web Publishing Service must be restarted so the Windows Identity Foundation will be recognized.
1. From the User Interface, start the Server Manager
2. Click Manage, then Add or Remove Roles / Features
3. Select the local server
4. Select Features from the list to the left
5. Scroll down to Windows Identity Framework 3.5 and check the box to select that option
6. Click Install on the bottom right of the screen
Start PowerShell and enter the following command
Add-WindowsFeature windows-identity-foundation