ADFS 3.0 MFA will not work because IE will not prompt for Certificate
Hello I have the following Problem. ADFS 3.0 is working pretty good in my Environment. But when i enable "MFA" with Certificates the Login accept the first Factor an prompt me to select a Cert. Here is...
View Article"No registered protocol handlers" error following installation of ADFS 3.0 on...
I am trying to install ADFS 3.0 on a Server 2012 R2 VM that I've created from the Server 2012 R2 Datacenter VM template on Azure. The server has no other roles on it (and no IIS because ADFS 3.0 does...
View ArticleADFS service communication certifcate renewal issue in ADFS 3.0
Hi All,We have 2 ADFS servers in farm with SQL backend & 2 ADFS proxy servers, For service communication we are using Digicert certifcate & Token certiifcates are self signedCurrently we were...
View ArticleMassive amount of error 342
My ADFS Admin event log is full of 342 errors. The details of the error are username or password are incorrect. Multiple times for the same users but their account never locks up.Everything is...
View ArticleADFS - Blank page with certificate auth
Hey,I have a wired problem with my adfs (v3 - Server 2012 R2) system.I open the site https://myadfs.com/adfs/ls/IdpInitiatedSignon.aspx to test the authentication. It works perfectly with the form...
View ArticleKerberos error accessing claims aware app via AD FS
Hello AllCan someone please help me with the following issue, I have posted it at the following link as the word document (zipped for easy download) contains a few screen shots...
View ArticleClaim Rules for different groups
We have the below claim rule in affect now for all our users, it was implemented using PS command:c:[Type == "http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-endpoint-absolute-path",...
View ArticleSSO Timeout
I'm looking for some input on how to extend the ADFS session timeout in certain scenarios. Here's the scenario...ADFS SSO timeout is set for 1 hour. 1. User is authenticates via ADFS and is logged...
View ArticleADFS primary authentication without AD
In ADFS 3.0, is there a way to authenticate a user by checking his/her client certificate (smart card) only? I don't want to look up the user in AD during the authentication process. If this can be...
View ArticleADFS3 503 errors on css and images
I have just installed ADFS3 as we are migrating from ADFS2 to 3.All works fine except..... the theme. It looks crap, the images and css are not downloading. I did a network thingy in IE and its showing...
View ArticleBypass ADFS Authentication
Hello,We are using ADFS (3.0) authentication in our web application. We have a scenario where user can access a page without authentication however he gets the ADFS Sign in page while trying to access...
View ArticleThe provided anti-forgery token was meant for a different claims-based user...
We have a website that automatically logs out after 20 minutes of idle time. Below is code in _layout.ts:var idleMax = 200;// Logout after 20 minutes of IDLE var idleTime = 0; var baseUrl = '<some...
View ArticleADFS 3.0 and Azure MFA
I've got an ADFS farm with WAPs. I've also got Azure MFA server. Both work separately as expected, but when I try to turn on MFA for a claim, I receive the following 2 events in my event log...Log...
View ArticleAD FS with a host-name site collection in SharePoint 2013
Guys, Hopefully I've reached the right group. I'm working with an SA who is trying to configure AD FS for me. I have a web application with a root site in SP 2013. It is running under https. My...
View ArticleAzure DRS\On-Prem ADFS Workplace Join Doesn't work
Hello,I have followed the somewhat nebulous instructions here: https://azure.microsoft.com/en-us/documentation/articles/active-directory-conditional-access-on-premises-setup/I have an existing ADFS 3.0...
View ArticleDeviceContext information in Claim not visible
i have ADFS 3.0 with DRS and workplace join configured. When claim is sent to ADFS I don't see any deviceContext claims and thus can't leverage "IsRegisteredUser" via setting up claim rules.need to...
View ArticleADFS Certificate Based Authentication
Hi Guys,Could anyone please mention the steps how to achieve ADFS Certificate based authentication. I have a ADFS Server and I have enabled theCertificate Authentication now one Signin using...
View ArticleADFS 2.0-Relying party wants a XML file that contains the Token Decrypting...
I am still running ADFS 2.0 on Win2008R2. I have a new relying party who is requesting a xml file that also contains our token-signing certificate. I exported the cert, without the key, which is...
View ArticleSingle Sign On(SSO) to on-premise SharePoint servers with ADFS
I am a member of IT team in our company.My questions are two below.1. One of our support company indicated that we can SSO to on-premise SharePoint 2013 servers from iPhone with VPN with Integrated...
View ArticleXmlException from Session Authentication Module
Following exception is observed in our Production system. Our application is based on ASP.NET MVC using Windows Identity Foundation to federate with ADFS for user authentication:Exception:...
View Article