Microsoft OWA Integration with ADFS


SecTrail ile Microsoft Outlook Web Application
Microsoft OWA Integration with ADFS

The compromise of user credentials poses a risk of unauthorized access to accounts. Today, to minimize this risk, multi-factor authentication is used as a reliable solution. SecTrail çok aşamalı doğrulama için güvenilir ve esnek çözümler  sağlamaktadır.

In this document, you can find information about two-factor authentication using one-time passwords (SMS, email, SoftOTP) with SecTrail for Microsoft Outlook Web Application


Integration of SecTrail with ADFS (Active Directory Federation Services)

Sectrail Owa Adfs flow
Sectrail owa authentication flow
    1. Kullanıcı tarayıcısı aracılığıyla e-posta adresini çağırır.
    2. Microsoft OWA redirects the user to the authentication screen of ADFS.
    3. At this screen, credentials are entered for initial authentication.
    4. The user is authenticated through Active Directory with the credentials provided through the redirection.
    5. If the verification is successful, the phone or e-mail address and user name information obtained through AD are transmitted to the SecTrail server, and the user is presented with the second login screen.
    6. The SecTrail server sends a one-time password to the address provided in the request (phone, email) via SMS or email. An external SMS proxy or email server is used during the transmission stage. In case of using a software token (SoftOTP), the password is generated via the SecTrail Authenticator mobile application.
    7. The user enters the one-time password provided by SecTrail (via SMS, email) or generated by the SecTrail Authenticator mobile application into the second login screen.
    8. The one-time password is sent to the SecTrail server via ADFS.
    9. The SecTrail server verifies the one-time password and sends the response to ADFS.
    10. If the response is successful, ADFS sends the authorization key granting the user access to OWA.
    11. The user starts their session on Microsoft OWA by making a request using this authorization key.


Mobile Application SupportSectrail Authenticator Store

If you want to use SoftOTP, you can ensure your security through the SecTrail Authenticator mobile application.

You can download the SecTrail Authenticator application to your mobile device from the Apple App Store or Google Play Store.

google play store badge apple store badge