AuthorizationContext parameter of ClaimsAuthorizationManager does not contain...
I'm missing something important in my MVC 4 Application.I am using passive ws-fed with my ACS. Works beautifully.I have a simple Custom ClaimsAuthenticationManager where I do nothing but call the...
View ArticleADFS - Event ID 364 Encountered error during federation passive request.
Hi All,We have federated 5 application with our enviroment.But today what happened SCOM captured one error in ADFS event logs.Which is mentioned below and i am not getting what i need to check.Kindly...
View ArticleADFS (RP-STS) is not propagating single signout to IDP in case of SAML...
Hi,I have following setup.Relying parties (applications) --->(trust)---->Internal ADFS (RP-STS)--->(trust)--->External ADFS (IDP)We have two types of applications (Relying parties)1) Java...
View ArticleADFS , Custom Auth using URL Redirect
Hi,I am new to ADFS. Need help in checking if the following is possible with ADFS 2.0.. I have a custom authentication setup hosted on a web server. Currently the ADFS is configured to authenticate...
View ArticleFaultContract for IWSTrust13AsyncContract interface
Hi,I have a custom STS that exposes the WS-Trust endpoints. This is done using the standard methods (I guess): Inherit from SecurityTokenService for issuing logic and WSTrustServiceHost for the...
View ArticleSetting the SPN Service account loses relationship with domain - (Setting up...
I'm trying to setup an internal ADFS 2.0 server and an ADFS proxy server in the DMZ. I used this guide for reference:...
View ArticleClaim rule not working, what is wrong?
I have an adfs trust between adfs and "entrust getaccess" and need to grant external users access on a SharePoint portal. The SAML token contains two claims "email" and "groups", the "email" claim is...
View ArticleADFS and DC's - Office 365
Is there any reason to not install the federation servers on domain controllers?We are using Office 365 with a single federation server (installed on a domain controller) in the farm. We would like to...
View ArticleSpecifying two endpoints for relying party trust in ADFS
HiLet me first explain the scenario:I have two SharePoint applications app1 and app2, when I access app1 which redirects to ADFS for authentication. At ADFS side the user will be authenticated against...
View Articleadfs federated service name change not working
Hi,I have an issue where i am trying to setup an adfs farm in a domain for office 365...i have setup the NLB cluster and all is well with that. I had to rename the federated service name from...
View ArticleHow Claims encoding values change throuth powershell
How Claims encoding values change from i:0ǵ.t| to i:0ȁ.t ǵ to ȁ in using powershell, I am using Sharepoint internal frderation authentication where encoding values are created if self...
View ArticleADFS Server unable to authenticate against itself.
Hello all, I've implemented an ADFS server at our organisation and the primary usage of this server is to authenticate users of our organisation whenever internet access is requested via our internet...
View ArticleADFS 2 mutual ssl certificate problem when doing SAML2 SOAP Artifact resolution
Hi,I have an ADFS2 server which uses a SAML2 idp as a claim provider with the SOAP binding for Artifact resolution. Communication between ADFS and the IDP to resolve the artifacts are using mutual ssl....
View ArticleADFS Expiring Certificates - Who's affected?
The token-signing and token-decrypting certificates are set to expire. When looking into this process it appears that the only ones that would be affected by this would be relying parties and not...
View Articledeleting a delegation record in Azure ACS
using sample code for OAUTH2 in its "delegation" use case shows a consent.aspx page using the ACS management service to deposit a delegation record. The latter identifies a one-time authorization code...
View Articlepermissions field in delegation entity
does anyone have an example of the values to be assigned to the the permissions field when writing a delegation entity to ACS - in the context of OAUTH2 server-server delegation flows?I think the idea...
View ArticleDebugging AD FS configuration problems
Hello,When I receive a SAMLResponse from my IDP (not a AD FS Claim Provider), 2 errors are logged in eventlog.First: EVT364 -> MSIS7012: An error occurred while processing the request....
View ArticleHow to add an anonymous page in web application which authenticated with ADFS?
Hello,I have a WIF web application which authenticated with ADFS. I need to create an intermediate page which can be accessed anonymously. So when an anonymous user access website, it always open this...
View ArticleGet Relying Party Identifier information during Idp or SP-Initiated Login
Hi Guys,Context: ADFS-P 2.0 UR3I'm trying to get the RP Identifier information (or whatever helpful to differentiate the RP) when doing Idp or SP-Initiated Login to apply specific claim providers. In...
View Article