带有Microsoft ADFS的Django SSO [英] Django SSO with Microsoft ADFS

问题描述

我的问题可能太宽泛或含糊，但是除了我正在做的事情之外，我无法最好地描述它。

My question may be too broad or vague, but I cannot best describe it in any other way than I am doing it.

我有多个Django应用程序。我同样成功地实现了SSO。所有这些东西都起作用。现在，我被赋予了一个新任务，任务是这样的。

I have multiple Django applications. I have implemented SSO successfully for the same. All this things work. Now, I have been given a new task and its like this.

我必须将Microsoft ADFS身份验证集成到我的应用程序套件中，并扩大当前SSO的范围。

I have to integrate Microsoft ADFS authentication into my suite of applications and broaden the scope of current SSO.

我的理解是，当我登录位于公司网络上的笔记本电脑时（我认为这是我必须放置的方式），我也登录了我的django应用程序

My understanding of it is as, when I log into my laptop which is on corporate network (I assume this is how I have to put it) I also get logged into my django applications

由于我没有使用ADFS的经验，所以我真的不知道它是如何工作的。任何有经验的人都可以用它的工作原理来解释它，以便我可以理解它并考虑解决方案。

I seriously have no idea of how this work as I have no experience with ADFS. Can anyone with experience of this explain it with a scenario of how it works so that I can understand it and think of a solution to it.

PS：如果需要更多信息，我将提供。另外，如果对问题不满意，请提出理由，以便我可以编辑问题并按原样发布。

PS: If there is any more information needed I will provide. Also, if downvoting the question do put a reason so that I can edit the question and post it as it should be.

推荐答案

如果Django支持基于SAML的登录，则将其设置为信任ADFS。 ADFS将自动使用您登录的凭据登录公司网络中加入域的计算机。如果用户从外部访问，它将提示输入密码或基于证书的身份验证（例如智能卡）来登录用户。

if Django supports SAML based login, then you set it up to trust ADFS. ADFS will automatically take care of logging in using your logged in credentials to a domain joined machine inside the corporate network. If the user accessed externally, it would prompt for password or a certificate based auth (e.g. smartcard) to login the user.

这篇关于带有Microsoft ADFS的Django SSO的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！