As @Tratcher said, the AuthenticationType parameter is used by Microsoft.Owin.Security as a key to do lookups of authentication middleware instances. The code below will use the following simple helper method to require that all requests are authenticated. In practice you’re more likely to use an [Authorize] attribute on sensitive controllers, but I wanted an example … Read more
AD and LDAP contain user attributes e.g. first name, last name, phone number. They also contain a user login and password and roles (groups) so can be used for authentication and authorisation. This authentication mainly uses Kerberos. In the Microsoft world, AD is the main player but if you want a “simple” AD, you can … Read more
I recently went through the same thought process: having never heard of SAML, I needed to enable a web application to authenticate via SAML with OneLogin as the identity provider (instead of Active Directory). During implementation, I made heavy use of OneLogin’s documentation and the passport-saml library, both of which I recommend, though I’m not … Read more
ADFS (Active Directory Federation Services) – Off-the-shelf Security Token Service (STS) produced by Microsoft and built on Windows Identity Foundation (WIF). Relies on AD for authentication. Can be used in active (SOAP web services) or passive (web sites) scenarios and supports SAML tokens, WS-Federation, WS-Trust and SAML-Protocol. It can be used as an Identity Provider … Read more