Account 合作夥伴組織中部署 AD FSDeploying AD FS in the Account Partner Organization

適用於:Windows Server 2016、Windows Server 2012 R2Applies To: Windows Server 2016, Windows Server 2012 R2

在 Active Directory 同盟服務 (AD FS) account 協力廠商代表組織聯盟信任關係的實際支援的屬性市集中儲存帳號中。An account partner in Active Directory Federation Services (AD FS) represents the organization in the federation trust relationship that physically stores user accounts in a supported attribute store. 商店支援哪些屬性的相關詳細資訊,請查看的角色的屬性儲存For more information about which attribute stores are supported, see The Role of Attribute Stores.

聯盟伺服器 account 合作夥伴組織驗證本機使用者和建立資源合作夥伴決策授權中所使用的安全性權杖。The federation server in the account partner organization authenticates local users and creates security tokens that are used by the resource partner in making authorization decisions. 例如網站和 Web 服務便可以輕鬆地與聯盟伺服器登記本身及使用信賴派對發行發行的驗證及存取控制。Relying parties such as Web sites and Web services are then able to easily register themselves with the federation server and consume issued tokens for authentication and access control.

在需要提供多個聯盟應用程式或服務存取您的使用者案例中,在不同的組織裝載每個應用程式或服務-,讓您可以部署信賴多方,您可以設定 account 合作夥伴聯盟伺服器。In scenarios in which you need to provide your users with access to multiple federated applications or services—when each application or service is hosted by a different organization—you can configure the account partner federation server so that you can deploy multiple relying parties.

如需有關如何設定及設定 account 合作夥伴組織的詳細資訊,請查看檢查清單︰ 設定 Account 合作夥伴公司For more information about how to set up and configure an account partner organization, see Checklist: Configuring the Account Partner Organization.

在本區段中In this section

也了See Also

Windows Server 2012 中的 AD FS 設計指南AD FS Design Guide in Windows Server 2012