ADFS windowstransport endpoint and federated claims providers
Hi all,I have a custom windows application which is able to authenticate to our ADFS 2.0 service using the WSFED windowstransport endpoint(13/windowstransport varriant), which is the active SAML...
View ArticleADFS 2.0 Rollout 3, Issue # 4 - Remove restriction allow multiple relying...
I inherited an existing ADFS installation. I attempted to add two Amazon Web Services trusts to my ADFS installation, one is for AWS standard and one for govcloud, they have different URL's, but use...
View ArticleADFS 2.2 Internet explorer login prompt for external users
Hey All,I am testing a setup with 2 ADFS 2.2 Server 2012 R2.ADFS1ADFS2named adfs.myCompany.comI have the servers published via a reverse proxy/load balancer (hardware) and the...
View ArticleCan I add HTML to the ADFS forms based login page.
Is it possible to add html to this page? We are using ADFS and all new users are issued a temp password that they change when they first login in. Since ADFS/Office 365 doesn't let you log in with a...
View Article[OAuth support in ADFS] AcquireToken returns null for RefreshToken property,...
I'm reposting this in this forum since I'm not sure which forum is appropriate for this particular question (i.e. I don't know if it's an issue with development or with configuration).TLDR:...
View ArticleOfficial ADFS 3.0 documentation? (specifically OAuth administration and...
(I was asked by a moderator in this thread to ask this question here)I'm having a hard time finding the official documenation for ADFS 3.0, specifically with regards to how to manage and develop for...
View ArticleHow to authenticate with a claims aware application
HiI am trying to figure out how to authenticate user to a different Relying party when users are logged onto SharePoint.Here is how my environment is configured:SharePoint 2013 Web Application with...
View ArticleIssue with Single Logout
Hello, I am using ADFS 2.0 rollup 3 as an IdP with Cisco WebEx as the SP. Thus far sign in, auto account creation and auto account update are all working great. I am trying to get WebEx single log out...
View ArticleIssue while accessing ADFS protected service
Hi,We require assistance regarding an issue related to ADFS (MS CORP STS) we are facing in our project.Following is the high level scenario.Application1.Application is a simple ASP.NET MVC application...
View ArticleWIF Extension vs ADFS+ClaimsApp for SAML Relying Party
I know I can use the WIF Extensions for SAML to build a Relying Party that can be directly accessed by an external SAML Idp. But I can also build a claims aware application, and set it up as a SAML...
View ArticleObtaining reason for authentication failure when implementing active scenario
I'm writing a .NET 4.5 application which uses the WIF API to implement the active scenario (WS-Trust), i.e. to send an RST message (containing a username and password) to an ADFS 2.0 server. During...
View ArticleService communications certificate not found in store
I was having some problems with the original SSL Certificate that I created and bound to IIS, therefore, I deleted it and re-created it.However, I had earlier used the certificate while configuring the...
View ArticleSending the SAML token in a Http header throws errors
HiI am trying to get some data from a Cliams aware application and display that in my SharePoint Web Part.Here is how my environment is configured:SharePoint 2013 Web Application with Cliams Based...
View ArticlePassing an AD FS token to a third party web API
Hi, so im really new to AD FS, my task is as follows allow a customer who uses AD FS to access our Web APIs. Now we dont need to reauthenticate this user coming in, but I do need is to get the claims...
View ArticleADFS 2.0 Logout Request - Requester status code
I'm having an issue getting Single Logout to work with a vended app called ServiceNow. According to their wiki they have never gotten log out working with ADFS 2.0. Here is the log out request that...
View ArticleThe signing certificate of the relying party trust is not unique across all...
Hello,I'm getting an MSIS7613 Error (The signing certificate of the relying party trust is not unique across all relying party trusts), and I've found a KB that relaxes this requirement for Server 2008...
View ArticleAD FS Add functionality for Change Password (about to expire password) and...
Hi all, We already have a AD FS implemented on Windows Server 2012. Now, we want to implement Change Password functionality for both expired password and first time password change. We have followed...
View ArticleClaimsAuthorizationManager:CheckAccess called twice with Different username
Hi,I am in process of moving our WIF3.5 based code to use WIF4.5. We have customized WCF service and used to Thread.CurrentPrincipal to pass around ClaimIdentity of the caller. After the change, I...
View ArticleADFS 2.0 Trace Logs
I have enabled TraceLogs on our development ADFS instance to debug some token issuance failures. However when I review the log files almost every entry has this at the top.The description for Event ID...
View ArticleHow to check AD SF 2012 R2 writing cookies on client machine for single sing on
I want to check whether AD FS 2012R2 is writing session and persistent cookeis to cleint machine or not. What is the way to check this?
View Article