Could anyone tell me the steps to implement token-based security for REST services in Portal for ArcGIS 10.3 ? We did it in AGS Server, but once federated, the token based security doesn't work.
FYI, Portal for ArcGIS supports web tier authentication (e.g., IWA, LDAP, and PKI) and SAML authentication. It has a different security model than ArcGIS Server.
About configuring portal authentication—Portal for ArcGIS | ArcGIS for Server
When you federate your Server site with Portal, this means that you are configuring Server to use the security model and identity store that Portal uses.
If you want to keep token-based security for REST services from your Server site, then you should just register your web services with Portal and NOT federate your Server site with Portal.
Connect to secured services—Portal for ArcGIS | ArcGIS for Server
FYI 2, this Esri 2015 Dev Summit technical session video might help give you some background on Server/Portal security:
Securing ArcGIS for Server and Portal for ArcGIS | Esri Video
Hope this helps,
Retrieving data ...