9.6 Federation Services

Active Directory Federation Services (AD FS) is the Microsoft implementation of federation services and supports the WS-Federation Passive Requestor Profile defined in [WSFederation1.2]. AD FS provides browser-based clients (internal or external to a network) with seamless, one-prompt access to one or more protected Internet-facing applications, even when the user accounts and applications are located in different networks or organizations. AD FS protocols are described fully in [MS-ADFSOD].