FederatedServiceCredentials.ConfigureServiceHost question
In WIF 3.51 we used this to wire up our customized SecurityTokenServiceConfiguration with our service host via a custom service behavior. Now that FederatedServiceCredentials.ConfigureServiceHost is...
View Articleoauth2 delegation flow, with JWTs from ACS
http://wp.me/p1fcz8-3fR describes my translation of the OAUTH2 delegation process, applied to the world of multiple listing services (and a 15 year, rather REST-ful like data services that distributes...
View ArticleADFS database sizing
Hello, I would like a recommendation for the sizing of the SQL database for an ADFS project. I’ve seen on the TechNet that the size is only dependent of the SAML artifact resolution or SAML token...
View ArticleADFS 2.0 with File Shares, Windows Desktop logon in Resource Domain
Hi,OK, here is what I am trying to understand. I have a need to use Windows Logon accounts from one domain in a Resource domain where users logon to their Windows Desktops and access file shares, but...
View ArticleClaims based authentication on a WCF service hosted on Sharepoint 2010
Hi,I managed to get SSO to an old style ASMX Web Service working by using the WS Federation flow with a SAML Assertion from ADFS. Then I get a FedAuth cookie I am using for further calls to the ASMX...
View ArticleCannot resolve KeyInfo for decryption
Recently ported our wcf token issuer and wcf relying party from .NET 4.0 (WIF 3.51) to .NET 4.5 and the new WIF. I can obtain a security token without error. When I attempt to invoke any of the...
View ArticleUsing the WIF ClaimsToWindowsToken service to get a kerberos token for the...
Hi,From my middleware coponent that supports Claims based authentication I need to consume a WCF service hosted on Sharepoint 2010 with a kerberos respectively a SPNego...
View ArticleWindows Identity Foundation Runtime for windows 8
Hi,I am having problem in installing WIF Runtime for windows 8 , while installing share point server 2010 . How do I install WIF on windows 8 to install share point server 2010
View ArticleADFS topology questions and passive req issue.
Hi, everybody!I have few questions and few problems regarding ADFS. Hopefully someone will be able to help me.I have dedicated ADFS server that is configured as federation server farm. For now I have...
View ArticleCustom ClaimsAuthenticationManager doesn't get called in WCF REST service
I am trying out a very basic WIF scenario where I have a WCF REST service with its own authentication and authorization managers. The problem is, incoming requests go straight into authorization and...
View ArticleADFS v2 service account is exposed to the internet
Hello,The ADFS v2 service account is exposed to the internet via the endpoint /adfs/services/trust/mex.Apparently MS is not admitting that exposing the service account poses a security concern.(you can...
View ArticlePersistant cookies for Yammer intergation with an internal ADFS platform
Dear experts,We are currently working on the integration of Yammer with our internal ADFS platform.The federation is working as it should but we still have one goal to achieve: We would like to have...
View ArticleConnect to tfspreview from MVC4 application
Hello everyoneI am currently developing an MVC4 web application which should be able to access work items in tfspreview. To do this I have to be able to dynamically authorize users to access tfspreview...
View ArticleACS bug in interacting with WIF IDPs
ACS imports metadata about IDPs, including their endpoints. As an FP, it duly invokes an assertion request on the endpoint, adding ws-fedp querystring argument.If the endpoint in metadata happens to...
View ArticleADFS 2.0 + SQL 2012
Hello All,First off can I thank you for taking the time to read this forum post. It should be a quick question to answer.Does anyone know if SQL 2012 is a supported SQL server for ADFS...
View ArticleThis Forum Is to Be Retired
Has everybody noticed the announcement at the top of the question list?"This forum is scheduled to be retired on January 2, 2013. This forum will be locked; it will still be available for review in the...
View ArticleADFS Deployment Topology/Architecture
We need some advise on the ADFS topology we are planning to deploy; if it will work or not.Our ADS descriptionWin 2008 R2 based single forest with just the forest root domainAD Forest root domain spans...
View Articleadfs 2.0 Hardware Load Balancer configuration
Hello All,Does anyboy know the HLB configuration for ADFS 2.0 Server (WIndows 2008 R2)?Affinity: Source IP AddressAlgorithm:Least ConnectionsSticky COnnectionTime OutRegardsJOse Osorio
View ArticleExchange 2010 OWA SSO between 2 separate forests
Hi,I'm currently in the process of trying to configure OWA SSO between 2 different forests using ADFS 2 - guide at: http://allmsft.blogspot.co.uk/2012/02/owa-sp2-and-adfs.htmlI'm running into some big...
View ArticleADFSv2 adfs/ls/wa=wsignout1.0 not clearing all cookies
I have several WIF applications making use of an ADFSv2 STS. They were all configured by running FEDUTIL. For some of these applications calling the adfs/ls/?wa=wsignout1.0 mechanism succeeds in...
View Article