WS-Trust request fails with Bad Key error
I'm using AD FS 2.0 with Sharepoint 2010 as RP. When I try to open the claim-aware Sharepoint Appthe Sign-In page asks me for an appropiate credential providerI'll be asked for Windows credentails...
View ArticleWIF 4.5 alternative to abandoned WIF 4 FederatedPassiveSignIn
I am in the process of building a customer portal using WCF 4.5 and I would like to use Windows Identity Foundation, but WIF 4.5 complicated my plan when it removed the controls FederatedPassiveSignin...
View Articleresponse transformation?
What is involved in transforming the following samlp http response over into something that WIF 4.5 can handle?<samlp:Response ID="_51d71afb-306e-4d6b-817b-b0038571c11d" Version="2.0"...
View ArticleSAMLP response transformation?
What is involved in transforming the following samlp http response into something that WIF 4.5 can handle?<samlp:Response ID="_51d71afb-306e-4d6b-817b-b0038571c11d" Version="2.0"...
View ArticleCalling FederatedPassiveSecurityTokenServiceOperations.ProcessRequest in a...
Hi,I am trying to implement a custom STS service (.NET 4.5) based on a sample that I found on MS website called "Custom Token". The sample works perfectly but the PassiveSTS web project used a...
View ArticleCA SiteMinder FSS r12.5 SAML2 IdP + ADFS2.0 SP issues
I'm trying to configure SM FSS 12.5 to be a SAML2 IdP for ADFS2-protected claims-aware WIF application.I'm following the steps from MS guide: AD FS 2.0 Step-by-Step Guide: Federation with CA Federation...
View ArticleWSFederationMessage CreateFromUri
Hi,I am trying to use the WSFederationMessage.CreateFromUri() to get aSignInRequestMessage in order to generate a token for a client that is authentifying.My request comes from an ASP.NET MVC 4.0...
View ArticleIssuing 303 / 307 instead of 302
Hi all,We're having an issue where one of our customers needs to browse a web site in a "sandbox application" instead of a normal browser. When the user hits the web site, he is redirected to the STS...
View ArticleChanging ADFS Code-Signing Certificate with O365 Federation in Place
I have a client who has an ADFS implementation federated to a production O365 tenant that went live about two weeks ago. The O365 federation uses a third-party SSL cert and the self-signed...
View ArticleADFS 2.0 Authorization Rules...Need More Info On Why User Is Not Authorized
I'm trying to figure out a way to get ADFS to return more detailed info in theAuthorizationFailedException. There are a many reasons a user might not be authorized based on how I have rules set up for...
View ArticleProblem with SAML login
Hi, I've got a problem in IE or Chrome when log in to sharepoint using SAML token. I've got error as below:Server Error in '/' Application....
View ArticleIntegrating my application with existing SSO using WIF
I understand the concept behind Windows Identity management framework and played around generate STS reference stuff which requires a FederationMetadata.XML.My question is if I want to integrate my...
View ArticleWIF and NetTcpBinding in .Net 4.5
When a service in .net 4.5 has WIF enabled, via the use identity configuration attribute, we are not able to use the nettcpbinding for this service due to the following issue.The service via WCF...
View ArticleConfigure SharePoint to Use the Claim
All - I am very new to Adfs.I need to have the lastPwdSet attribute from AD passed back to the SharePoint relying party. This information is required to be able to display an information icon to users...
View ArticleThe ICrypto implementation '' is not supported
I'm getting the error "The ICrypto implementation '' is not supported"when calling a WCF service using ws2007FederationHttpBinding. The token being passed was generated from a custom STS. This is all...
View ArticleCheck null claim / Use different attribute
Hi all,I have cases where a certain attribute doesnt exist for an object, and I would want the outgoing claim to be issued using a different attribute. For example, if i try to issue a nameidentifier...
View ArticleIs it possible to use WIF and have custom application roles with-out building...
Is it possible to use WIF and have custom application roles with-out building a custom STS or using Active Directory?For example I might want to define a user as a 'moderator".This link below gives me...
View ArticleHelp with ADFS Idp and InCommon Shib RP federation help.
I'm hoping to find anybody else out there that has configured the Relying party trust with Incommon.org. If anybody has could you post your Claims rules? The information I've received is that you need...
View ArticleWIF 3.51 / 4.5 interoperability?
We have a legacy .NET 3.5 asp.net app that uses WIF 3.51. Our other web apps are in .NET / WIF 4.5. However, it is non-trivial to update this one particular web app from 3.51 to .NET 4.5. This...
View Article