Prerequisites
ADFS with Windows Integrated Authentication Proxy
ADFS 3.0 can integrate with both Windows Integrated Authentication enabled web applications and SAML Service Providers / Relying Party. The following requirement must be met.
- Microsoft Active Directory Federation Service 3.0 or greater server / farm
- GridGuard-VA Virtual Appliance 5.2 or greater
External Access for Windows Integrated Authentication
If you require public internet availability for Windows Integrated Authentication enabled web applications, the deployment will also need at least one Windows 2012 R2 Server with the Web Application Proxy role installed. Depending on your network infrastructure, the web application proxy may need two network interface cards and be located in the DMZ network.
ADFS with SAML Authentication
If you are only integrating SAML Service Providers / Relying Parties with GridGuard, Active Directory Federations Services are not explicitly required. The SAML enabled Service Provider / Relying Party can be directly integrated with GridGuard. If integrating ADFS and GridGuard is required, the software requirements are relaxed.
- Microsoft Active Directory Federation Services 2.0 or greater server / farm
- GridGuard-VA Virtual Appliance 5.2 or greater