Does ADFS use kerberos?

kerberos adfs ws-federation federation
baksyl picture baksyl · May 19, 2017 · Viewed 8.4k times · Source

Currently looking to federate servers that use AD. First thought was to use ADFS to manage service requests across domains and realms. That being said the application must have access to Kerberos tickets for a specific use case.

Does AD FS use Kerberos at any point or is it it's own totally redesigned ticketing system? If so can you create a hybrid application that can authenticate using ADFS and request tickets using Kerberos?

Answer

rbrayb picture rbrayb · May 22, 2017

ADFS simply provides a federation service on top of AD i.e. support for protocols like WS-Fed and SAML.

The Kerberos protocol remains part of AD.

Once authenticated ADFS provides either a SAML 1.1 or 2.0 token that contains the claims.

Related questions

The target principal name is incorrect. Cannot generate SSPI context

I am struggling to get a SQL Server connection from machine A to machine B which is running the SQL Server. I have Googled extensively and all the things I have found have not worked. Nor do they lead you …

Read More
How do I get JSON data from RESTful service using Python?

Is there any standard way of getting JSON data from RESTful service using Python? I need to use kerberos for authentication. some snippet would help.

Read More
How to connect with Java into Active Directory

I am using Weblogic, Ejb3.0. Java 1.6 I need to access Active Directory via Java code. I read about several ways (Kerberos, LDAP) Anyone could advice me on comfortable way of doing so? where could I have some full code examples, …

Read More