Claims information is transferred in security tokens. Each token contains a set of one or more claims, and contains information about the user to whom this token applies. A security token service (STS) issues the token.
Tokens can be issued in different formats, such as Security Assertion Markup Language (SAML) tokens or WS-Federation (WS-FED) tokens. Security tokens can be signed with an X.509 certificate to protect the contents of the token in transit. The application that receives the token validates it before using the claims.
The Agent for SharePoint uses WS-FED tokens and X.509 certificates to protect its content.
The previous illustration represents a security token. This token contains claim values and a digital signature.
|
Copyright © 2013 CA.
All rights reserved.
|
|