Enabling the User to login through web interface | ADFS

Peter Schober peter.schober at univie.ac.at
Fri Nov 30 09:20:09 EST 2018

* raghu.avula at ucf.edu <raghu.avula at ucf.edu> [2018-11-28 16:21]:
> urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport is the
> class reference AD FS uses to force forms based authentication, and the
> RequestedAuthnContext attribute comparison=”exact” means the SP will accept
> no other authentication context.

Both settings to achieve that (authnContextClassRef,
authnContextComparison) are documented here:

You can apply content settings in many different way, e.g. for Apache
httpd you'd set it in the web server for the specific resource
(e.g. Location) using the documented directive:

When using MS-IIS you'd follow the documentation here:

For other systems either check out the documentation yourself or ask
questions here if you can't find what you're looking for.


More information about the users mailing list