none
Is it safe using NameSpaceType value for ADFS authentication with SSO? RRS feed

  • Question

  • Hi,

    I am developing a java application to authenticate users with ADFS to support SSO. When i make a call to https://login.microsoftonline.com/GetUserRealm.srf to get the user information, the response is as follows:

    <RealmInfo Success="true"><State>3</State><UserState>2</UserState><Login>adapterDev@infaawcrm.com</Login><NameSpaceType>Federated</NameSpaceType><DomainName>INFAAWCRM.COM</DomainName><FederationGlobalVersion>-1</FederationGlobalVersion><AuthURL>https://infaawccrm.infaawcrm.com/adfs/ls/</AuthURL><IsFederatedNS>true</IsFederatedNS><STSAuthURL>https://infaawccrm.infaawcrm.com/adfs/services/trust/2005/usernamemixed</STSAuthURL><FederationTier>0</FederationTier><FederationBrandName>INFAAWCRM.COM</FederationBrandName><AllowFedUsersWLIDSignIn>false</AllowFedUsersWLIDSignIn><Certificate>MIIC7DCCAdSgAwIBAgIQJ29aEt9SJJNObD5Uw3IvwzANBgkqhkiG9w0BAQsFADAyMTAwLgYDVQQDEydBREZTIFNpZ25pbmcgLSBpbmZhYXdjY3JtLklORkFBV0NSTS5DT00wHhcNMTQwNjI1MDk0MTM4WhcNMTUwNjI1MDk0MTM4WjAyMTAwLgYDVQQDEydBREZTIFNpZ25pbmcgLSBpbmZhYXdjY3JtLklORkFBV0NSTS5DT00wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+t/Sj8cx7iWqS4bYxZXuPPDv7SXY2OGWY4B0lJZiZPVjfpT0eHjDXsq9szHgoNldIFPAl9atY959IWLTpw55zQHhAYuKvFCko0WoVixCc/bjVPP3oFaYijOCuFc9vU4zTaU7fkq1vvMogqsPvQFxFrnZwfCZ9nON57qmExT86YJI/k2oX7Q6LdfRro0kF4aSR56CbxEZIh0q73Qbrr4+b6eGKMNlSGyq2Dhhi4wxbHh5WSS9gYRJPonNYey8ALJgsMFAIDcp9PgwvCSYNPA+wYCFOZ+g7YXRHZsdu+Bpm3TsfBpguWEykQ+knHmReY+55bLMkUYak8WXKfyv69lWTAgMBAAEwDQYJKoZIhvcNAQELBQADggEBAFzodOOkYvivo8sjWU0xpEKR1QYLWpLPmPrA90q7TPdJjHCyClgS76Gyn6BrbBsLb4mS/AgRFeoOLZFTAagJxlW6HGax9rU+gGfEm9Ymsp2Vvu/oRrh7LTReR+rgfQzK9eXOEhqRQknGVw975PIz3GpYyvkhsT4J4QXp2TZUXnouKqOv0Ae9ZAbObQ34Qc+K6vdlYmOlV3u40Bw4v/udWUcnNt14kZSmgFIHOrX5F76T6cZ8XpgrnBJUGcJFCz5FFbLfn4RPs14nerPdQvwSCPVQA8ZXeFB4qLrjPJmUjeV/yG5E4JMR09j+yWtZ4NYqI1NDxbr4ZVAG62WdNxyEaXQ=</Certificate><MEXURL>https://infaawccrm.infaawcrm.com/adfs/services/trust/mex</MEXURL><SAML_AuthURL></SAML_AuthURL><PreferredProtocol>1</PreferredProtocol><EDUDomainFlags>0</EDUDomainFlags></RealmInfo>

    I wanted to know, is it safe to use NameSpaceType or IsFederatedNS tags to decide between an online user and an Active Directory user? 

    Please Suggest.

    Thanks

    Aayush


    Friday, August 8, 2014 10:27 AM

Answers

  • Hi,

    This forum is used to discuss the questions about Windows Communication Foundation, Serialization, and Networking , then for your question, please try to post it to the following forum for better support.
    http://social.msdn.microsoft.com/Forums/en-US/home?forum=Geneva .

    Thanks for your understanding.

    Best Regards,
    Fang Peng


    We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
    Click HERE to participate the survey.

    Monday, August 11, 2014 5:01 AM
    Moderator