Federated authentication allows users to access applications or websites by authenticating them against a certain set of rules, known as claims. The authentication ticket or the token validates the user across multiple applications, websites, or IT systems.
Claim-based authentication is a method to acquire the user's identity-related information on both on-premises and cloud-based products. A single token is created based on the predefined claims to identify the users trying to access the application or website. After the identification of the user is complete, a security token service is used to identify the type of user.
Active Roles supports federated authentication using the WS-Federation protocol, through which you can sign in to an application once using the single sign-on option and you are authenticated to access websites.