Microsoft Active Directory

You can use Microsoft Active Directory with IBM® Security Verify to manage the user IDs and passwords that are used to access applications through Federated Services. Before you can use Microsoft Active Directory Federated Services for single sign-on in Verify, it must be configured as a SAML identity provider.

Roadmap

Perform these tasks to use Security Assertion Markup Language (SAML) to connect Active Directory Federated Services (ADFS) to Verify.

As an administrator, you can enable encryption support in ADFS.

1. Configure ADFS as an identity provider. See Configuring ADFS as an identity provider.
2. Configure Verify as a service provider. See Configuring IBM Security Verify as a service provider.
3. Test the single sign-on connection. See Testing the single sign-on connection.
4. Optionally, configure ADFS with Windows Integrated Authentication. See Configuring ADFS with Windows Integrated Authentication.
5. Optionally configure ADFS to use an external email as an alternate login ID. See Configuring ADFS to authenticate users with an email address.