Introduction
Notre configuration ne sera sans doute pas la même que la vôtre, mais nous espérons néanmoins vous éclairer sur les différents sujets, et vous permettre d’aller plus loin.
Nos travaux sont inspirés des différents blogues traitant du sujet (voir les sources en fin d’article), merci à eux !
Configuration
Dans notre environnement de test, nous mettons en place un server SharePoint 2010 sur le domaine Treysearch.com, auquel nous voulons nous connecter à partir d’un client sur le domaine Adatum.com, via AD FS 2.0.
Nous avons donc :
- Un client sur Adatum.com : adfsclient.adatum.com
- Le serveur de Domaine, aussi serveur AD FS, sur Adatum.com : adfsaccount.adatum.com
- Le serveur SharePoint 2010, sur Treysearch.com : adfsweb.treysearch.com
- Le serveur de Domaine, et serveur AD FS, sur Treysearch.com : adfsresource.treysearch.com
Notre serveur SharePoint est configuré pour être accessible à l’adresse login.treysearch.com.
Articles
Voici la liste des différents articles que nous avons rédigés. Cette liste sera potentiellement mise à jour par la suite.
- Echange de Claims entre deux domaines, via AD FS 2.0, à destination d’un server SharePoint 2010
- Ajouter AD FS comme fournisseur de Claims à SharePoint
- Installer les certificats entre les serveurs AD FS
Blogs
Voici quelques blogs traitant aussi du sujet
- http://blogs.pointbridge.com/Blogs/nielsen_travis/Pages/Post.aspx?_ID=42
- http://blogs.msdn.com/b/spidentity/archive/2010/01/04/claims-based-authentication-cheat-sheet-part-1.aspx
- http://marcvaneijk.wordpress.com/2010/06/12/sharepoint-2010-and-adfs-2-0-the-complete-step-by-step-guide/
- http://blogs.technet.com/b/adfs/archive/2007/02/26/setting-up-an-adfs-lab-environment-part-1.aspx
Introduction
We built a little lab here within Synétis, in order to test AD FS 2.0 and SharePoint 2010 interaction. We are going to give some feedback on certain steps during setup that might cause you some trouble, often because lacking documentation or information online.
The lab configuration probably won’t be the same as yours, but still: we hope it will help you get to a working environment.
Our work is inspired by various blog posts (see the sources at the end of the article); we thank them for their help !
Configuration
In our test lab, we install a SharePoint 2010 server on the domain Treysearch.com, and want to connect to it from a client on the Adatum.com domain, via AD FS 2.0.
The configuration is as follows:
- A client on Adatum.com : adfsclient.adatum.com
- Domain Controller & AD FS Server for Adatum : adfsaccount.adatum.com
- SharePoint 2010 Server on the Treysearch domain : adfsweb.treysearch.com
- Domain Controller & AD FS Server for Treysearch : adfsresource.treysearch.com
The SharePoint server is configured to be reached on the url login.treysearch.com
Articles
Here is the list of articles we wrote on the topic AD FS and SharePoint. It’ll be updated when new articles are written.
- Sharing Claims between two Domains to use in a SharePoint server, using AD FS 2.0
- Add AD FS as Claims provider in SharePoint
- How to install certificates on AD FS servers
Blogs
Here are some other blog posts on the same topic:
- http://blogs.pointbridge.com/Blogs/nielsen_travis/Pages/Post.aspx?_ID=42
- http://blogs.msdn.com/b/spidentity/archive/2010/01/04/claims-based-authentication-cheat-sheet-part-1.aspx
- http://marcvaneijk.wordpress.com/2010/06/12/sharepoint-2010-and-adfs-2-0-the-complete-step-by-step-guide/
- http://blogs.technet.com/b/adfs/archive/2007/02/26/setting-up-an-adfs-lab-environment-part-1.aspx
