Entrust Identity as a Service™ Technical Integration Guides
Click here to see this page in full context

Report errors or omissions

  1. Home >
  2. Legacy Entrust IdentityGuard Integration Guides >
  3. Integrate Entrust IdentityGuard AD FS Adapter

Integrate Entrust AD FS Adapter with Identity as a Service

The Entrust AD FS Adapter uses the pluggable multi-factor authentication (MFA) option of AD FS to integrate Identity as a Service with AD FS. This integration guides provides the instructions to add a legacy version of the Entrust IdentityGuard AD FS Adapter to Identity as a Service. For the new Identity as a Service AD FS Adapter that includes an installer to install the Identity as a Service plug-in, see the instructions in Integrate IDaaS AD FS Adapter.

This integration supports the following authentication methods for Identity as a Service:

One-time password (OTP)

Token (soft token and hardware token)

Entrust IdentityGuard AD FS Adapter (1.0, 1.1, and 4.0)

For legacy versions of the Entrust IdentityGuard AD FS Adapter (versions 1.0, 1.1, and 4.0), do the following:

Access the technical integration guide for your version of the Entrust IdentityGuard AD FS Adapter:

Entrust IdentityGuard AD FS Adapter 1.0

Entrust IdentityGuard AD FS Adapter 1.1

Entrust IdentityGuard AD FS Adapter 4.0

Add Entrust IdentityGuard AD FS Adapter to Identity as a Service as an Authenticaiton API. See Add an Authentication API.

Using the Entrust AD FS Adapter documentation, complete the following:

Install the Entrust IdentityGuard AD FS Adapter (see the section Installing the Entrust IdentityGuard AD FS Adapter).

Restart the AD FS Service (see the section, Restarting the AD FS Service).

Configure AD FS for Entrust authentication (see the section, Configuring AD FS Entrust IdentityGuard for authentication).

Configure AD FS for Identity as a Service (see the section, Configuring AD FS for Identity as a Service).

In Identity as a Service, do the following:

Create a gateway.

Configure the gateway.

Add a gateway instance.

Note: See the section Manage Gateways in the Administrator Help for instructions if you need to complete these steps.

Add Entrust IdentityGuard AD FS Adapter to Identity as a Service.Add Entrust IdentityGuard AD FS Adapter to Identity as a Service.

Add AD FS Adapter to Identity as a Service

Click > Security > Applications. The Applications Lists page appears.

Click Add. The Select an Application Template page appears.

Do one of the following:

Select Identity as a Service Integrations from the search drop-down list and scroll to find the application you want to add to IDaaS.

- or -

In the Search bar, enter a search option to filter for the application you want to add to IDaaS.

Click ADFS Adapter. The Add ADFS Adapter page appears.

Optional: Modify the Application Name or Application Description

Optional. Add a custom application logo.

Click next to Application Logo. The Upload Logo dialog box appears.

Click to select an image file to upload.

Browse to select your file and click Open. The Upload Logo dialog box reappears showing your selected image.

If required, resize your image.

Click OK.

Click Next. The Setup page appears.

Enter the application Hosts name or IP list (separated by a comma).

Leave the Port setting at the default.

From the Select IdentityGuard agent drop-down list, select the gateway instance containing the Entrust IdentityGuard agent.

Click Submit and Done.

Add a resource rule.

Using the applicable Entrust IdentityGuard AD FS Adapter Integration Guide, complete the following:

Install the Entrust IdentityGuard AD FS Adapter (see the section Installing the Entrust IdentityGuard AD FS Adapter)

Restart the AD FS Service (see the section, Restarting the AD FS Service)

Configure AD FS for Identity as a Service authentication (see the section, Configuring Entrust IdentityGuard AD FS for authentication)