We have a website, example.com that was built using ASP.NET MVC5 in VS2013. The website uses the standard "Single User Account" authentication method for our customers and internal company management.
I have been tasked with providing a secure area within the website that only our partners can access. This is the desired flow for our partners employees.
- Partner employee logs into computer at beginning of shift, employee is now 'authenticated'.
- Partner employee needs to access our company data
- Partner employee opens web browser to www.example.com/partner-area
- Partner employee is treated as an authenticated user and allowed to query company data without the need to log in.
What would be the suggested method of authentication for this scenario? Client Certificates? ADFS? Individual Accounts for employees?