You can use an Active Directory Federation Services (ADFS) server as the claims provider for Security Center, and allow users outside your company to log on to your system by establishing a trust chain from third-party's ADFS servers to your company's Security Center main server.
Before you begin
What you should know
Configure the trust chain outside your company's domain.
Make sure that the following tasks are performed by the Company XYZ's IT personnel.
- Add a claims provider trust to Company XYZ's ADFS server for Company XYZ's Active Directory.
- Add a relying party trust to Company XYZ's ADFS server for your company's ADFS server.
Configure your local ADFS server as the claims provider for your Security Center system.
- On your company's ADFS server, open the AD FS Management snap-in.
- Add a claims provider trust to your ADFS for the third-party ADFS server.
- Configure the claim rules for the third-party claims provider.
- Add a relying party trust to your ADFS server for Security Center.
- Configure the claim rules for Security Center, the relying party you just added.
Configure your Security Center system to
receive claims from your local ADFS server.
- Connect to your Security Center system with Config Tool.
- Create a user group for each ADFS group you accept as Security Center user groups.
- Create the Active Directory Federation Services role.