SECURING
When Integrated Windows Authentication (IWA) is used, users on Windows clients are not prompted for the ADFS login name and password when they access servers on the corporate intranet. IWA is available for basic SAML authentication, Notes federated login, and Web federated login.
Before you begin
Compete the following prerequisites:
IWA uses the Kerberos token that is issued when a user logs in to a Windows workstation to authenticate users to ADFS. This type of authentication is also known as SPNEGO authentication.
Complete the steps in this section to enable IWA on ADFS.
Enabling Integrated Windows Authentication on ADFS 2.0 Complete this task to enable Integrated Windows Authentication (IWA) on Active Directory Federation Services (ADFS) 2.0.
Enabling Integrated Windows Authentication for ADFS 3.0 or 4.0 Complete this task to enable Integrated Windows Authentication (IWA) on Active Directory Federation Services (ADFS) 3.0 or 4.0.
Configure browsers for Integrated Windows Authentication Ensure that browsers are configured to support Integrated Windows Authentication (IWA).