Saturday 9 February 2013

MS Dynamics AX 2012 - ADFS



Microsoft Dynamics AX 2012 - ADFS

Dynamics AX 2012 provides flexible authentication mechanism through the use of Active Directory Federations Services, Forms-based authentication or Windows Live options. Active Directory Federation Services (ADFS) is a feature of Windows Server that allows two companies that have close collaboration to allow their network domains to trust each other. This is commonly used for example where a business function might be outsourced and so the outsourced company users would be authenticated through ADFS to access Dynamics AX. This could also be used in scenarios where vendors log on Dynamics AX to manage inventory on your behalf. Windows Live is a common internet based authentication mechanism. This would be used where you have a large range of customers, vendors or external consultants that needs to access Dynamics AX for account management activities. Forms-based authentication validates credentials that are entered in a logon form.

The third major security enhancement in Microsoft Dynamics AX 2012 relates to authentication, which determines who is able to access the ERP solution. With the growing need to integrate more closely across the supply chain, authentication has become a pressing need for organizations that need their suppliers, partners, and customers to be able to directly interface with their ERP. Our new flexible authentication model makes it much easier for external users to securely access ERP data through the Enterprise Portal or other web-based applications.

Building on the Windows Identity Foundation, MS extended the authentication model in Microsoft Dynamics AX 2012 by using open-standard application programming interfaces (APIs). This simplifies administration of these external accounts by allowing authentication using Active Directory Federation Services (ADFS), Windows Live ID or other similar methods (e.g. Forms based Authentication), without requiring the external parties to be provisioned in an Active Directory domain.

MS introduce these enhancements, which dramatically simplify administration, offer greater flexibility and control over data access, and enhance the compliance, security, and privacy of your valuable business data. If you’re developing applications for Microsoft Dynamics AX 2012, MS recommends you to become familiar with the new security model and the development tools on the Development Center for MS Dynamics AX on MSDN.