Hi all,
We got a request to implement a trust with an external party.
Internal users should be able to make use of that application. But also external users, which have their account stored in a different user store (question is asked if its a SQL or LDAP kind of store).
Is it possible to have a SSO effect for both internal and external users?
Somehow ADFS has to know if the user is internal or external. I can imagine an internal user being in the office will get a nice SSO feeling. From what i think this is not possible for external users. External users should still authenticate once on our sts
(adfs). Lets say this is true, is it possible for ADFS to see if a user is external, and then use the User Store that belongs to that external user?
You also must take in mind that an internal user could also be in a internet cafe, so SSO is not possible. Also this time the user should authenticate to the sts. But this time it has to use Active Directory as User Store.
I know internal users have a username in a different format then external users.
Is it possible for ADFS to know which User Store to pick based on the format of the username?
Thanks in advance for the reaction.