Using BMC Defender Active Directory Federation Services (ADFS) plug-in

After you have installed and tested the BMC Defender Active Directory Federation Services (ADFS) plug-in, you can make several minor adjustments to enhance the security and behavior of the plug-in, as follows:

  • Specifying the BMC Defender logon window type—The BMC administrator can configure whether the end-user should be automatically redirected to the ADFS sign-on and sign-off pages, or the end-user should be able to use ADFS or the local logon screen.
  • Specifying Additional Security parameters—The BMC administrator can configure whether the ADFS certificate is checked or the ADFS hostname is checked (as the referrer) of all HTTP requests, permitting more security in the logon process.

Related topics

BMC-Defender-Active-Directory-Federation-Services-ADFS-plug-in-deprecated

Installing-BMC-Defender-Active-Directory-Federation-Services-ADFS-plug-in

Configuring-BMC-Defender-Active-Directory-Federation-Services-ADFS-plug-in

This section provides a description of these optional plug-in elements, their usage, and other considerations, including screenshots and an explanation of all configuration values:

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*