Overview - Legacy Authentication Methods - Foundation 23.1 - Foundation 23.1 - Ready - OnBase - Essential - Premier - Standard - external - Essential - Premier - Standard

Legacy Authentication Methods

Legacy Authentication Methods
Foundation 23.1

The OnBase Web Server can be configured to use Microsoft Active Directory Federation Services (AD FS) authentication, allowing users to authenticate in OnBase using the Web Client or Unity Client using their Active Directory credentials.

Authentication using AD FS requires:

  • The OnBase Web Server and Application Server

  • An AD FS server

  • User access through the OnBase Web or Unity clients

In order to enable AD FS authentication for OnBase, the configuration described in this chapter must be completed. When correctly configured, the client authentication request is redirected to the AD FS server, which validates the user credentials (based on the NameID value) and the source of the redirect, and provides a Security Assertion Markup Language (SAML) token. The SAML token is then passed to the Web Server by the client, allowing the Application Server to process the authentication request with OnBase.


The SAML token is a SAML 1.1 token.