Active Directory Federation Services (ADFS)

Active Directory Federation Services (ADFS) provides single-sign-on (SSO) technologies to authenticate a user to multiple Web applications (either on or off premises) over the life of a single online session. ADFS accomplishes this by securely sharing digital identity and "claims" across security and enterprise boundaries.

A claim is a statement about a user that is used for authorization purposes in an application. ADFS brokers trust between different entities by allowing the trusted exchange of arbitrary claims that contain arbitrary values. The receiving party uses these claims to make authorization decisions.

What does this mean? It means a user only signs on (authenticates) once and then that sign-on is shared securely with other applications, as opposed to signing on to each application every time the user wishes to use them. This concept is called single sign-on and ADFS makes this possible.

Examples of where WaTech has used ADFS to establish single-sign-on capabilities include HRMS (an on-premises application), Apptio, EasyVista, and SalesForce (cloud-based solutions.)

The WaTech ADFS service is available to members of the Enterprise Active Directory (EAD). 

Notice to customers:

WaTech is working with customer agencies to migrate applications from Active Directory Federation Services (ADFS) to Entra ID Federation (formerly known as Azure AD). The goal is to migrate all eligible applications by December 2024.

• Learn more about the ADFS Migration project.
• View our Frequently Asked Questions about this project.

Features & Benefits

• SSO gives the user the ability to access multiple applications by signing on once.
• SSO improves efficiency while maintaining security.
• This service comes bundled with membership in the EAD.

Pricing

ADFS is included in Enterprise Active Directory Services.

Pre-Service Requirements

Your organization must be a member of the Enterprise Active Directory (EAD) to use this service.

How to Order

Contact the WaTech Support Center to schedule an operational consultation.

• Submit a ticket through our Customer Portal.
• Phone: 360.586.1000 or 1.855.WaTech1 (1.855.928.3241)
• Email: support@watech.wa.gov

If you have questions or need assistance regarding a strategic consultation, please contact your agency Business Relationship Manager (BRM).

Reference Material

• Tech specs

  • WaTech is using ADFS 4.0 for this service. See Microsoft's site (link is external) for additional information about ADFS 4.0.

Service Forms & Documents

• ADFS application onboarding form
• Application Integration Form
• TOS/Application for EAD Services
• Service Action Plan