locked
MS Tech Talk: "Is it possible to use OpenID as an Identity Provider in ACS?" RRS feed

  • Question

  • I have a customer asking if it’s even possible to create and register another Identity Provider in Windows Azure AppFabric ACS? This will NOT be AD based, more OpenID?


    MS Tech Talk persona - #mstechtalk
    Wednesday, February 9, 2011 1:58 AM

Answers

  • ACS uses OpenID for connecting with two pre-configured identity providers: Yahoo! and Google. Additional custom OpenID identity providers can be set up in ACS using the management service.  What you need to do is follow the samples for adding an identity provider, and add one of ProtocolType ‘OpenID’.  Then, you need to manually perform OpenID discovery to get the identity provider’s sign-in URL, and add that as an IdentityProviderAddress of type ‘SignIn’.

    ACS will perform sign-in with any OpenID 2.0 identity provider, and will attempt to retrieve additional claims using the AttributeExchange extension, if supported by the provider.


    MS Tech Talk persona
    • Marked as answer by MS Tech Talk Wednesday, February 9, 2011 1:58 AM
    Wednesday, February 9, 2011 1:58 AM