Documentation Hub
Workforce
Workforce
  • Keyless Integrations Docs
  • ✅Prerequisites
  • IAM and SSO Integrations
    • Overview
    • Okta
      • Account Linking Config
      • Identity Provider Config
    • Microsoft AD FS
      • Prerequisites
      • Integration
      • Authentication
      • Troubleshooting
    • AWS Cognito
    • Auth0
    • ForgeRock
      • ForgeRock Authentication Node
      • Forgerock Identity Cloud
    • OneLogin
    • Ping Identity
      • PingOne SSO
    • Microsoft Entra ID
    • Salesforce
  • Post Integration
    • 🏁Post Integration
      • 📢Employee Onboarding
        • Prerequisites
        • Email Templates
      • 🎧Admin Onboarding
        • Common Terms
        • Enrollment and Activation
        • Authentication
        • Troubleshooting and Support
Powered by GitBook
On this page

Was this helpful?

  1. IAM and SSO Integrations
  2. Microsoft AD FS

Prerequisites

A few things you should know before starting the deployment.

Last updated 8 months ago

Was this helpful?

As part of your onboarding with Keyless, you should have performed the steps below. If you're missing one or more of these prerequisites, please reach out directly to support@keyless.io.

  • Provide the Keyless IT department with the domain name of your AD FS service.

  • to trust the domain names of the Keyless SAML connectors (SP & IdP) that Keyless provided you with.

  • Ensure that the firewall policy of your local network allow the following:

    • The AD FS service must be reachable by our SP and IdP.

    • For account linking, the user browser must be able to communicate with the SP and the AD FS instance.

    • For authentication, the user browser must be able to communicate with the IdP and the AD FS instance.

    • The EUD must be able to communicate with the Keyless Infrastructure.

Update the AD FS configuration