AD LDS Identity Provider

Jan 5, 2010 at 2:26 PM

With ADFS v2 dropping support for AD LDS as an authenticating store what alternatives exist?  Ideally I am looking for an IdP that would support merging both a database and LDAP store for authentication along with attributes.

Jan 6, 2010 at 2:56 PM

Yes, ADFS v2 only authenticates against AD. The alternative if you need to authenticate against other stores (e.g. membership db, custom database, etc) is to either build your own STS or buy one from a partner. Thinktecture has a great starter kit for STS precisely for this:



Jan 6, 2010 at 3:01 PM

Are there third parties that you have seen stick out from the crowd (or must consider)?  I've seen Ping Identity, Optimal IdM, Symlabs, OpenSSO.

Jan 6, 2010 at 3:58 PM

Unfortunately I can't comment on any of those. I don't have the experience.

Maybe others in the forum can?