On the Windows Azure Platform a JWT token (http://openid.net/specs/draft-jones-json-web-token-07.html ) is needed for accessing the TenantAPI or AdminAPI. The token is obtained from the ADFS web service using the System.IdentityModel.Protocols.WSTrust RequestSecurityToken and RequestSecurityTokenResponse + related .Net classes. There is however a more direct way of obtaining the token that can be used on any platform.
Blog post will show how easily you can install AD FS 3.0.
– Windows 2012 R2 server on management domain
– Public certificate for AD FS (in this case we are using wildcard certificate which is already in computer personal store)