Daiichi Sankyo is a global pharmaceutical company with more than 100 years of scientific expertise, 30,000 employees, and services in more than 50 countries around the world.
The Challenge
SSO for Japan, Germany and USA! Multiple partner SharePoint sites were needed with SSO and Daiichi Sankyo did not want to host the SharePoint portals. Each location required three types of authentication as follows:
- Windows integrated AD
- SSO via ADFS
- SQL FBA
What We Did
Over the course of a month, five geographic offices were successively stood up and extensively tested. Small variations in firewalls, AD version, and Windows server versions caused many variables that were carefully reviewed and troubleshot. It was an excellent experience to work with so many professionals with different subject matter expertise.
- ADFS (Active Directory Federation Services) is a software component developed by Microsoft that can be installed on Windows Server operating systems to provide users with single sign-on access to systems and applications located across organizational boundaries.
- SAML token SSO for employees
- FBA connected to SQL DB to separate partners from Active Directory
- Windows authentication for administrative users outside of the ADFS domain
Required Servers were:
- Active Directory Certificate Services or third-party public key infrastructure (PKI) (Not required, but it is recommended for production deployments.)
- Internal LAN Active Directory Forest
- Internal LAN Account Federation Server
- Perimeter Network Active Directory Forest
- Perimeter Network SharePoint Server w/ADFS Enabled
- Perimeter Network Resource Federation Server
The Business Benefits
Users have a seamless single sign-on experience between the internal network and the cloud-based SharePoint solution, and management overhead is minimal as the only maintenance required is a certificate update every few years!
- Multiple partner extranets now exist using single Sign-on for employees
- Authentication for partners is accomplished without being added to Active Directory
If you need security guidance we are here to help. If you're going to do a SharePoint migration, you will want to be sure that you're using the best Microsoft SharePoint consulting services so your project will have the results you were expecting without any surprises. Please read more about our zero business outage SharePoint migrations here and contact us today!