Redirect to specific IdP in Azure ACS
Hi,I'm developing a framework 4.5 .NET web app that has ADFS and ACS as Providers Trust.I redirect the users depending on the URL that they type to ADFS or to ACS for authentication.I have two Office...
View ArticleADFS & Web App Proxy - Two Forests?
We're preparing to setup a Web Application Proxy server and an ADFS server to allow us to publish OWA and SharePoint for our external users. We have two forests currently and I wonder how a single ADFS...
View ArticleADFS 3.0 own login page
Hello There, One of my client looking to use the ADFS 3.0 as an IDP. However, ADFS 3.0 has 3 trusted internal ADFS. (example, when idpsignonpage displayed, it shows 3 option to choose). Our goal is,...
View ArticleAD FS Federation Trust / Relying Party trust
Hi, Pease can you confirm whether an ADFS Federation Trust is the same thing as an AD FS Relying Party trust? E.g. we've got an Office 365 Relying Party and I want to know if the AD FS Federation...
View ArticleIs there a way to dynamically change security token espiration time?
Hi everyone,Is there a way to dynamically change security token by code/request? The requirements for my application are: 1. After one time sign in, the user can work on as long as he/she needs. 2. The...
View ArticleADFS2.0 failed with OnBehalfOfAuthorizationException exception
Hi: I am trying to request a token from ADFS2.0 usernamemixed endpoint.my code looks like this:factory.Credentials.UserName.UserName = "user2";...var rst = new RequestSecurityToken{...};...
View ArticleClik here to view.
ADFS login page has no background/styling.
Hi all,We're having a weird issue with our ADFS on Server 2012 R2. When third party direct to AD FS login page (the one with blue background), it just display a basic box with text box, no styling or...
View ArticleThe Element ('X509SubjectName', 'http://www.w3.org/2000/09/xmldsig#') is not...
Hi.When I do SP-initiated SLO, ADFS 3 server got error like this.The Federation Service encountered an error while processing the SAML authentication request. Additional Data Exception details:...
View ArticleMFA (Certificate) Authentication Failing from Extranet
Hi, we have set up ADFS3 and WAP. ADFS3 configured to require MFA (Certificate) from both Intranet and Extranet. We are using our own CA and the root CA is installed on the WAP in Trusted Root CA...
View ArticleAD FS doesnt work after user forest migration
Hello, Team!So this is my scenario: forest Source.com, where I`ve installed last versionof Dirsync, and connect it to Office 365 and Hibrid Exchnage 2013. All works. In another forest, target.com, I`ve...
View ArticleGetting the time of when a user last logged on in a claim
Hi, I am trying to get the last login time of a user from AD and display it back to them (using ADFSv3). I can successfully get the lastLogon time, however, this does not replicate between DCs, so...
View ArticleADFS 3.0 MFA will not work because IE will not prompt for Certificate
Hello I have the following Problem. ADFS 3.0 is working pretty good in my Environment. But when i enable "MFA" with Certificates the Login accept the first Factor an prompt me to select a Cert. Here is...
View ArticleClik here to view.
ADFS Configuration issue
Dear all,I am trying to configure ADFS but i can't! first i try to use my exiting serviceaccount it say "the system cannot find the specify file". when i try administrator user it say can't start...
View ArticleArtifact binding vs POST binding
Hi,What are the advantages/disadvantages of Artifact and POST binding?If my solution can use both, which one should I use and why?TksRgdsEmmanuel
View ArticleChange ADFS 3.0 Login page URL
Hi,I have trawled the web looking for an answer to this and so far nothing.I have recently implemented ADFS 3.0 into my organisation. I would like to know if the login page URL...
View ArticleRestrict access to O365 to registered devices in a ADFS scenario
Hi Everybody,I want to restrict access to Office 365 (Federated Auth) to Workplace joined devices only. So I guess I have to create a Issuance Auth rule on the that permits access only when the claim...
View ArticleWS-Fed signout response -- ADFS 3.0
We have a sign out issue with WS-FED. Here are the following scenario:1. Our Identity Claims Provider is external supporting SAML 2.02. During the initial authentication request with the IdP, there...
View ArticleConnecting ADFS 3 to Shibboleth
Hi, I've been tasked to configure SSO between out organisation and smartsheet.com. We use ADFS, probably version 3 since it's on 2012 R2--the person who installed already left the org. I've configured...
View ArticleCan I connect directly to web app proxy
If I have a web application proxy with the name (for example) adproxy1.somewhere.edu can I connect directly to the proxy and still get the ADFS sign-in page? For...
View ArticleNeed SAML but only using WS-Fed
Hello,We are using ADFS to integrate with Claims Providers that wish to use our Relying party app.Our first CP (IdP, whatever) wants to exclusively use SAML 2.0. They utilize ADFS as well. Both us...
View Article