Quantcast
Channel: Claims based access platform (CBA), code-named Geneva forum

ADFS 3.0 MFA will not work because IE will not prompt for Certificate

Hello I have the following Problem. ADFS 3.0 is working pretty good in my Environment. But when i enable "MFA" with Certificates the Login accept the first Factor an prompt me to select a Cert. Here is...

View Article


"No registered protocol handlers" error following installation of ADFS 3.0 on...

I am trying to install ADFS 3.0 on a Server 2012 R2 VM that I've created from the Server 2012 R2 Datacenter VM template on Azure. The server has no other roles on it (and no IIS because ADFS 3.0 does...

View Article


ADFS service communication certifcate renewal issue in ADFS 3.0

Hi All,We have 2 ADFS servers in farm with SQL backend & 2 ADFS proxy servers, For service communication we are using Digicert certifcate & Token certiifcates are self signedCurrently we were...

View Article

Massive amount of error 342

My ADFS Admin event log is full of 342 errors.  The details of the error are username or password are incorrect.  Multiple times for the same users but their account never locks up.Everything is...

View Article

ADFS - Blank page with certificate auth

Hey,I have a wired problem with my adfs (v3 - Server 2012 R2) system.I open the site https://myadfs.com/adfs/ls/IdpInitiatedSignon.aspx to test the authentication. It works perfectly with the form...

View Article


Kerberos error accessing claims aware app via AD FS

Hello AllCan someone please help me with the following issue, I have posted it at the following link as the word document (zipped for easy download) contains a few screen shots...

View Article

Claim Rules for different groups

We have the below claim rule in affect now for all our users, it was implemented using PS command:c:[Type == "http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-endpoint-absolute-path",...

View Article

SSO Timeout

I'm looking for some input on how to extend the ADFS session timeout in certain scenarios.  Here's the scenario...ADFS SSO timeout is set for 1 hour. 1.  User is authenticates via ADFS and is logged...

View Article


ADFS primary authentication without AD

In ADFS 3.0, is there a way to authenticate a user by checking his/her client certificate (smart card) only? I don't want to look up the user in AD during the authentication process. If this can be...

View Article


ADFS3 503 errors on css and images

I have just installed ADFS3 as we are migrating from ADFS2 to 3.All works fine except..... the theme. It looks crap, the images and css are not downloading. I did a network thingy in IE and its showing...

View Article

Bypass ADFS Authentication

Hello,We are using ADFS (3.0) authentication in our web application. We have a scenario where user can access a page without authentication however he gets the ADFS Sign in page while trying to access...

View Article

The provided anti-forgery token was meant for a different claims-based user...

We have a website that automatically logs out after 20 minutes of idle time. Below is code in _layout.ts:var idleMax = 200;// Logout after 20 minutes of IDLE var idleTime = 0; var baseUrl = '<some...

View Article

ADFS 3.0 and Azure MFA

I've got an ADFS farm with WAPs.  I've also got Azure MFA server.  Both work separately as expected, but when I try to turn on MFA for a claim, I receive the following 2 events in my event log...Log...

View Article


AD FS with a host-name site collection in SharePoint 2013

Guys,     Hopefully I've reached the right group.  I'm working with an SA who is trying to configure AD FS for me.  I have a web application with a root site in SP 2013.  It is running under https.  My...

View Article

Azure DRS\On-Prem ADFS Workplace Join Doesn't work

Hello,I have followed the somewhat nebulous instructions here: https://azure.microsoft.com/en-us/documentation/articles/active-directory-conditional-access-on-premises-setup/I have an existing ADFS 3.0...

View Article


DeviceContext information in Claim not visible

i have ADFS 3.0 with DRS and workplace join configured. When claim is sent to ADFS I don't see any deviceContext claims and thus can't leverage "IsRegisteredUser" via setting up claim rules.need to...

View Article

ADFS Certificate Based Authentication

Hi Guys,Could anyone please mention the steps how to achieve ADFS Certificate based authentication. I have a ADFS Server and I have enabled theCertificate Authentication now one Signin using...

View Article


ADFS 2.0-Relying party wants a XML file that contains the Token Decrypting...

I am still running ADFS 2.0 on Win2008R2.  I have a new relying party who is requesting a xml file that also contains our token-signing certificate.  I exported the cert, without the key, which is...

View Article

Single Sign On(SSO) to on-premise SharePoint servers with ADFS

I am a member of IT team in our company.My questions are two below.1. One of our support company indicated that we can SSO to on-premise SharePoint 2013 servers from iPhone with VPN with Integrated...

View Article

XmlException from Session Authentication Module

Following exception is observed in our Production system. Our application is based on ASP.NET MVC using Windows Identity Foundation to federate with ADFS for user authentication:Exception:...

View Article


<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>