出于设备成本、人力成本、服务可靠性和维护等方面的考虑,现在越来越多的国外公司把自己公司的本地环境迁移到云服务,或者本地环境和云环境共存(云地相连).2012年11月1日,微软Office 365也在中国登陆.问题也随之而来:如何实现现有本地环境和云环境(Office 365)的统一身份验证和共同管理?介绍了单点登陆的原理,然后通过提出问题:“如何在本地环境和云环境中建立信任”,引出了WS-Federation,活动目录联盟服务和在线目录同步服务的概念,最后给出了具体解决方案和实施方案.%Because of the equipment cost,equipment maintenance,manpower cost and service reliability considerations,now more and more foreign companies try to migrate the data fromon-premises organizationto cloud,or maintain data both in on-premises organization and in the cloud (what is called a hybriddeployment).On November 1,2012,Microsoft Office 365 also landed in China with a few problems raised,how to realize Unified Identity Authentication and Unified Managementin hybrid deployment.This paper introduces the concept of Single Sign-On and then raises the question about how to build the federation trust between on-premise and cloud,and then answer the question-WS-federation,Active Directory Federation Server (ADFS),MS Online Directory Sync (Dir-Sync),finally gives out solid solutions and detail steps.
展开▼
