ADFS 2.0 Migration
I have four ADFS servers in a cluster running on Windows Server 2008. They are virtual ( running on vmware). We are planning to perform a V2V of these ADFS servers and in the process the ip address of...
View ArticleCan i add WS-FED apps to the idpinitatedsignon page?
I'm new to ADFS and trying to figure a few things out. I have everything setup and working with a WAP in the DMZ. Our goal is to have all our apps in one locations. One of our vendors uses SAML...
View ArticleNo Green Ticks in Iframe on Identity Server Signout page
Having trouble with Single Sign out. Have got single sign in working, but can't logout from all Rps.The signout page appears and places the iframes in it for all the rps with the correct...
View ArticleADFS/WAP - redirect http to https
Hello,we are running an Server 2012 R2 ADFS-Farm with WAP.What is the recommended option to redirect http requests to https, so a user can use the urlhttp://app.domain.com and automatically gets...
View ArticleADFS 3.0 and SSO for Chrome
Hello Microsoft Team,We recently deployed ADFS 3.0 in house to allow SSO with a service provider called Service Now. We do have multiple ADFS internal servers in a farm and db hosting on a SQL shared...
View ArticleConfigure WIF authority, audience uri, federationConfiguration, etc. at runtime?
I am new to Windows Identity Framework. My organization has multiple environments that make use of different 'authority' and 'endpoint' names. My application can detect the environment at runtime....
View Articleparameter cannot be found: AllowedAuthenticationClassReferences
I posted my question earlier in this forum, but it was suggested to ask my question here. I'm in the process of configuring automatic device registration in Azure AD. The steps are described in...
View ArticleADFS3.0 - How to add a custome attribute in LDAP attribute store?
I am working on a task to use LDAP attribute store in ADFS 3.0. It needs a custom attribute.I created an AD LDS instance, which is my LDAP attribute store.I want use 'Send LDAP Attributes as Claims'...
View ArticleUsing Custom Attribute to deny users access to applications
Hello i'm trying to deny some users access to a federated application based on custom attributes on their user account and i seem to be stuck. on the claim descriptions (ADFS)while trying to create a...
View ArticleADFS 3.0 - secondary farm server using WID not responding or showing ADFS info.
Hello all, I have a 2012 R2 ADFS server farm consisting of 2 servers using WID. When I added the second server to the existing server, it completed the tasks just fine without any errors and shows in...
View ArticleRedirect to same Relying Party after failing an 'Issuance Authorization' check
Hi,I'm new to ADFS 3.0, but we've just started to implement it internally for access to 3rd party Software as a Service platforms and now I'm getting very popular at work! I'm learning this as I go, so...
View ArticleAdd a federation server to an existing farm not showing certificate
Hello,I've already set up a federation server for SSO and I wanted to get some redundancy with it so I'm making a second server. I created another 2008 R2 server to host the service and installed it...
View Articledecommissioning ADFS
Hi, is there any clear instruction on how to disconnect ADFS from our network without affecting any other service? I have office 365 hybrid environment, exchange 2010. I have ADFS and DirSync, I want...
View ArticleADFS and ADFS Proxy configuration Issues when adding second ADFS Proxy server
Hi, We have a configuration with 2 ADFS 3.0 servers configured in NLB + 2 external ADFS Proxies (WAP) also in NLB. When we try to configure the second ADFS Proxy using PowerShell we receive the...
View ArticleADFS 3.0 - Does ADFS 3.0 support ADLDS as user identity store?
I am planning to use ADLDS as identity store for outside users. I heard that ADFS 3.0 does not support ADLDS as identity store. Besides Azure AD, is there a workaround to use AD LDS?My work...
View ArticleEvent ID:44 / Unable to configure the private key store. A constraint...
Dear colleagues, Actually, we are facing a really strange issue regarding a clean installation of ADFS on Windows 2012R2. We are using PowerShell for installation: Import-Module ADFS $ServiceAccount =...
View Article2012 R2/ADFS with Group Managed Service Account
I'm trying to configure the ADFS role on a new 2012 R2 domain controller following these steps:http://technet.microsoft.com/en-us/library/dn303424.aspxHowever, if I try to create a new service account...
View ArticleCannot complete Web Application Proxy Wizard for ADFS
Hi,I have an existing ADFS farm on Server 2012 but I'm replacing it with a new farm with the same name on Server 2012 R2. There will be an ADFS server and a Web Application Proxy.I've installed the...
View ArticleADFS 2.0 have any issues, if I disable SSLv2, SSLv3, RC4, and enable TLS 1.2
I have ADFS 2.0 running on Windows 2008R2. A scan is showing me those federated and federatedproxy servers have SSLv2, SSLv3, and RC4 enabled, and all of those protocols have known exploits. I do...
View ArticleClik here to view.
ADFS 2.0 Authentication Only Works for Administrators
If as a member of domain admins, I access https://adfs.domain.tld/adfs/ls/IdpInitiatedSignon.aspx and "Sign On" I am presented with a client certificate prompt, select the appropriate cert, hit ok, and...
View Article