Transparent SSO with SAML (IE, SAML 2.0, ADFS, Kerberos authentication)

login single-sign-on adfs2.0 saml-2.0 ws-federation
YMC picture YMC · Feb 7, 2012 · Viewed 9.4k times · Source

Configuration is: ADFS 2.0 as IdP (both WS-Federation and SAML 2.0 are supported), ASP.NET app as Service Provider. When SPS requests ADFS with WS-Federation standard (WIF used) it lets me login to ADFS automatically with no login pop-up window even if new session started, so that Kerberos token does its job well as expected. However in case of SAML 2.0 (ComponentSpace.SAML.2 lib is used) every time I open IE9 and being redirected to ADFS, I'm asked to enter my windows domain credentials in a standard small pop-up login window. Is any SAML 2.0 parameter or other technique letting me to get rid of this window like in the WS-Fed case? Thanks

Answer

Luis dB picture Luis dB · Sep 14, 2012

adfsserver.us.mycompanyname.com/adfs/ls is in the Internet zone and the automatic login will not happen.

adfsserver/adfs/ls is in your Intranet zone in IE and will log in automatically.

You could add adfsserver.us.mycompanyname.com to your trusted (or Intranet zone) sites list and you should be not be prompted for credentials.

Related questions

How to add Social login services from Google, Facebook, Yahoo etc. to my website?

I want to add the following buttons to my website for providing users with option to login using more services like Google, Facebook etc. Please answer the following questions: How can I add various services like this free of cost? (…

Read More
how to log in to mysql and query the database from linux terminal

I am using debian linux. I have a linux machine on which mysql is install. I can log in to my linux machine using root user as well as other user. I can connect to mysql database on linux machine …

Read More
Configuration System Failed to Initialize

I'm new to Visual Studio. I'm currently creating a Login form. I have this code. string connectionString = ConfigurationManager.ConnectionStrings["ConnectionString"].ConnectionString; try { using (OdbcConnection connect = new OdbcConnection(connectionString)) { connect.Open(); OdbcCommand cmd = new OdbcCommand("SELECT username, password FROM receptionist", connect); …

Read More