?
Solved

Setting up Exchange 2013 SSO

Posted on 2014-03-18
2
Medium Priority
?
1,168 Views
Last Modified: 2014-03-21
Our organization is looking to host Exchange 2013 for another organization and we need to setup SSO capabilities.

After much searching, I found that we need to setup ADFS to create a federated trust between our organization and the other organization however everywhere I look on the web shows how to connect your Active Directory to Office 365 however it doesn't show how to create an ADFS two organizations that who I already manage.

Is there a good tutorial that shows how to connect two organizations to enable SSO?
0
Comment
Question by:Adeste
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 22

Expert Comment

by:Joseph Moody
ID: 39937196
0
 
LVL 42

Accepted Solution

by:
Adam Brown earned 2000 total points
ID: 39937851
If you have the capability to configure a Forest trust between the other organization and yours, that would be a much simpler setup than what you want. If you do that, you can use linked mailboxes rather than mucking about with a custom ADFS setup, which is usually tricky at best.

If you can't get a forest trust going between the two environments, you would need to have an ADFS server in both environments that are configured to trust one another, then you have to set up Exchange 2013 to accept SAML tokens and ADFS authentication and impersonation. http://grumblydotnet.wordpress.com/2013/03/06/adfs-exchange-15/ might give you a little bit more information on what you need to do to integrate ADFS with Exchange 2013. Once that is set up, you would need to set up a federated trust between the ADFS server that is configured to work with Exchange 2013 and the ADFS server in the other forest, which can require some effort.
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New style of hardware planning for Microsoft Exchange server.
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses
Course of the Month12 days, 11 hours left to enroll

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question