Migrate from ADFS 2.0 standalone to ADFS 3.0
I currently have a production environment using ADFS 2.0 and ADFS 2.0 Proxy for CRM 2011 on windows 2008R2 servers. I am looking to install ADFS 3.0 on Server 2012 and use it for a new installation of...
View ArticleHow to add custom xmlelement to outgoing RequestSecurityToken
Hi: I am using WIF4.5 and WSTrustChannelFactory to talk to STS, just want to know how can I add a custom xml to outgoing message. I check the documnet of RequestSecurityToken, seems no place to add...
View ArticleADFS Transform Claim Rule in Claims Provider Trust
I have an ADFS 2.0 server acting as a Federation gateway (SP-STS) between my claims aware web application and an external identity server (IP-STS). I have: A Claims Provider Trust (CPT) set up with...
View ArticleNEWBIE: my first adfs web application and how to use the claims from the adfs...
Hi,I followed this manual from Vittorio Bertocci like so many people and I did get it up and running using vs2015.I also found the link between @User.Identity.Name in _LoginPartial.cshtml and the name...
View ArticleClik here to view.
Second WAP not establishing trust with secondary ADFS 3.0 Farm node
Hi,I've been working on setting up our corporate ADFS environment with a mostly successful outcome however I am having an issue with one of our ADFS WAP servers not establishing a trust with a...
View ArticleADFS 3.0 single installation completely crashed
Hello,I had adfs 3.0 as a single installation in my forest and it suddenly crashed. I have used ADFS for purpose of authentication and Internet facing CRM 2015. I tried to install ADFS on new Server...
View ArticleADFS Install Failure in Azure VM
I'm attempting to build an ADFS 3.0 lab in Azure using the following guide:http://mybitsofcloud.com/2015/01/adfs-lab-in-the-azure-my-singlesignon-lab-in-cloud-part2/I'm using servers created from the...
View ArticleADFS ExtendedProtectionTokenCheck popup login window
We are setting up ADFS on Windows 2012 R2. This is working now, you can login automatically now into the adfs page when already logged into windows on a computer on the local network. However, this...
View ArticleValidate Certificate of Security Token in Claims Authentication
I am using the following code to validate a SAML Token. In the below code, the CertificateValidationMode is set as None and the CertificateValidator is also set as None. I came to know that, this is...
View ArticleADFS proxy In a federated SSO environment
If you are installing an ADFS infrastructure to support Federated SSO with a 3rd party partner organisation (who have a claims aware web application) and you only require access/authentication for...
View ArticleHow to get an attribute from custom application and pass it?
Hi,Is it possible to get a field from a custom application within an XML file, and pass that to the SP?The field is not populated inside of AD. Is it possible to do this?Or will the application have to...
View ArticleLimit access to only Intune
Hi, Is there a possible way using authorization rules in ADFS to provide access to EAS & Intune service only?
View ArticleUsing '@' symbols in AD FS 3.0 usernames?
Hello,I have several existing users in Active Directory with an @ symbol in their username. For example, te@stuser and testuser@. When authenticating to AD FS, the tes@studer can authenticate fine with...
View ArticleADFS 3.0 Authentication Policies (Global vs per RP)
Hi, Is it possible to configure a global authentication policy for Extranet that has, for example, "Certificate Authentication" only. But for one specific RP configure it to use only "Forms...
View ArticleADFS without Web Application Proxy
Hello, I have an internal network and a DMZ. I'm looking at configuring Dynamics CRM for ADFS as follows:- Internal users will have SSO - External users will access the app via a 3rd party application...
View Article2012R2 AD FS WAP proxy problem
I am trying to setup a test ADFS server environment with the goal of using federated Office 365. My test environment has two domain controllers at 2008R2 functional level, 1 server 2008R2 and the...
View ArticleADFS 3.0 as a relying party trust with Taleo Buisness Cloud
We are looking for instructions on setting up our ADFS 3.0 as an IdP with Taleo as a SP. Does anyone have any instructions (with screenshots)? Really appreciate it. We are at a stand still at the...
View ArticleADFS 3.0 Windows Security Prompt Doesn't Permit Selection of Smart Card...
I'm trying to get ADFS 3.0 to perform authentication using a DoD CAC. This smart card carries 3 certificates (encryption, signing, and identification). In a working authentication scenario (not using...
View ArticleUserNameSecurityTokenHandler / client ip address problem
As part of our company security policy we need to obtain the client ip address as part of the authentication process in our custom UserNameSecurityTokenHandler (Note, we are using our custom...
View ArticleADFS 2.0 SAML logout process problem
HelloI'm trying to configure a web application as a Relying Party (app.com later in this text) to work with ADFS 2.0 (adfs.com later in this text) as SSO provider. Single sign on works good. There is a...
View Article