ADFS 3.0 Client certificate authentication not working
Hi AllI’ve just rolled out ADFS 3.0 within my company and everything is working great but now I would like to enable Client certificate authentication and this is where the fun has started. My...
View ArticlePublish Exchange 2010 OWA using Web application Proxy and ADFS 3.0. Non-claims
Hello I have a problem when trying to publish Exchange 2010 OWA via Web Application Proxy using Non claims. The setup: DC01 - Windows Server 2012 R2 DC with ADFS installed. WAP01 - Windows Server 2012...
View ArticleHow to serve a 'favicon.ico' from ADFS 2012 R2 WebContent?
Hi,Fiddler is always showing a 404 for /favicon.ico when passing ADFS (2012 R2). As we have an 'AdditionalFileResource' option when using an AdfsWebTheme I though it would make sense to just serve up...
View ArticleAD FS & Office 365 - Query/Observation
Hey all,My organisation have been using Office 365 and AD FS (as we don't sync passwords) for roughly a year now, and we're reaching the point where the self-signed certs in AD FS for token-signing and...
View ArticleHow to generate encryptedassertion with encryptedkey that has @Recipient set
As-is, WIF's Saml2SecurityTokenHandler can write Saml2Assertion that looks like the following:<saml:EncryptedAssertion> <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"...
View ArticleExposing Web Applications via ADFS query
HiWe want to build an App and expose it via our own internal ADFS servers (we will be the resource partner organisation) to external userssome will be users in "account" partner organisations that have...
View ArticleADFS 2.0 fails on start on SQL Server, suceed on WID
I have a fully operational ADFS server running under a WID database. For backup centralization easiness, I’d like to move databases on a SQL Database.I Followed the steps describes in this article, but...
View ArticleDifference between ADSF and WIF
Hello:I want to configure Datazen to use Claim Base Authentication,It support ADFS. But i had built a STS by WindowsIdentityFoundation.The Datazen cannot work with STS.So I try to compare those two...
View ArticleFacing issue while creating AD Federation test lab
I am facing some issues while creating AD Federation test lab on Windows server 2012 R2.I am following the below link for establishing my test...
View ArticleCan't use UPN as a claim for ADFS
Hi there,I'd like to migrate the authentification provider for a sharepoint farm from kerberos to an ADFS-server.ADFS is up and running, I created claims rules for UPN and email adress, but it seems,...
View ArticleAD FS SAML authentication request WSIS7075 Error
I have a client that I recently configured Single Sign-On with a third party external web app using AD FS. The relying party trust has been configured on the AD FS farm. The third party external web...
View ArticleADFS and ADFS Proxy configuration Issues when adding second ADFS Proxy server
Hi, We have a configuration with 2 ADFS 3.0 servers configured in NLB + 2 external ADFS Proxies (WAP) also in NLB. When we try to configure the second ADFS Proxy using PowerShell we receive the...
View ArticleADFS 3 Issues with login with Internet Explorer
I am trying to setup an application and when the user logs into the site they are prompted with a username password box and you can enter username/password and the box just keeps popping back up....
View ArticleTroubleshooting why Windows Integrated Authentication does not work for...
I have an ADFS 2.0 farm running on 2008r2. I use the same hostname(fs.contoso.com) for both ADFS endpoints, but I resolve that hostname differently internally so that the clients do not go through the...
View ArticleGetting 403 forbidden when log in and log out in short time period
HelloI have configured adfs 2.0 SSO with Oracle Business Intelligence. When I am logged into my adfs application and then click into OBIEE Relying party trust few times I get following error in ADFS...
View ArticleADFS 3 and multiple MFA providers
Hi all,I have a question regarding ADFS 3 and multiple configured MFA providers. Let say I have a ADFS 3 server, configured with the Microsoft MFA plugin and SupplierX MFA plugin, both enabled in the...
View ArticleADFS 3.0, Azure MFA Plugin and Certificate MFA
HI We have a scenario where we want all users to use MFA when accessing published Office 365 services. However for internal users on work devices we want them to use certificates to enable seamless...
View ArticleGet IP Address of Client from ADFS
How do you get the end user's ip address from ADFS? The claims that I assumed you could retrieve them from return the ip of the load balancer or proxy server, not the end...
View ArticleThe target computer is not joined to a domain. Only machines that are joined...
Keep receiving this error "The target computer is not joined to a domain. Only machines that are joined to a domain can be members of a AD FS farm"Server is a domain controller, so it's definitely...
View ArticleUsing ADFS to Provide Secure Client Access to Our Web App
Hi all, I've got a question and was hoping for some feedback about how ADFS works. Our company has an ADFS 2.0 system set up and is using it to connect with multiple 3rd party systems using Single Sign...
View Article