AD FS 2012 R2, Sign Out not redirecting back to Relying Party
I am in the process of implementing AD FS 2012 R2. The problem I'm running into is implementing federated sign-out and redirecting back to the original relying party after the sign-out is completed....
View ArticleAD FS 3.0 Firefox and Chrome no integrated windows authentification
I have a Windows Server 2012 R2 server with ADFS 3.0 in my environment.My Question is if there is a chance to use Firefox or Chrome with the Integrated Windows Authentification? At the moment these...
View ArticleHow is Web API protected by ADFS 3?
HiI tried to build the OAuth sample based on URL http://msdn.microsoft.com/en-us/library/dn633593.aspx.The sample works just fine. I can see Authentication, and Bear token flying around ADFS and...
View Articlewindowstransport Authentication erroring with "The target principal name is...
I have an application that does active authentication against ADFS using the windowstransport endpoint. This code has and is working perfectly for 90% of our deployments. We have one domain however...
View ArticleADFS 2012 / Problem with IdpInitiatedSignon.aspx
Yesterday I was able to visit our ADFS 2012 IdpInitiatedSignon.aspx page and it would prompt me for my AD credentials. I would enter my AD credentials and the page would sign me in. Today, I try...
View ArticleADFS 2012 / multiple domains?
Assuming passive / ws-federation use case, can ADFS service domain and subdomain signin requests? For example, we have bar.com and foo.bar.com domains each with their own web servers (relying...
View Article“Key not valid for use in specified state” after IIS Reset?
I have had a ton of issues with the System.Security.Cryptography.CryptographicException: Key not valid for use in specified state. error. This seems to only occur now when IIS is reset and I try to...
View ArticleADFS 3.0 Customize Claims Provider Trust LOGO
Cross posted from: http://social.technet.microsoft.com/Forums/windowsserver/en-US/f15dff1d-4409-4c35-9e23-b0220f97197e/adfs-30-customize-claims-provider-trust-logo?forum=winserverDSI have 2 Claims...
View ArticleADFS 3.0 - Replace the out-dated Certificate for the Login Page
Hi there,we are hosting Microsoft Dynamics CRM 2013 for us and a few other companies. The authentication was realized via ADFS, which was working very well since now.As suggested we used a Self-Signed...
View ArticleADFS 2.1 Proxy Server - "503 Service Unavailable"
Currently have a 2012 R2 Proxy Server and a 2012 R2 ADFS AD Server. Everything works fine if I attempt to access ADFS locally on the Proxy server via the fully qualified domain name of the ADFS...
View ArticleChrome/ ADFS question
Has anyone gotten Chrome for Windows / ADFS 2012 to inter-operate for Single Sign-on? Are there special steps required for ADFS config and Chrome config? I remeber that in IE you must add the ADFS...
View ArticleADFS - Cannot edit documents in Office365
ADFS3 rollout has been pretty disastrous so far - lots of errors which neither ourselves nor Microsoft can resolve.Hoping someone can help on the latest issue though:When we try to edit documents in...
View Articlehow to disable http post and redirect as identity provider in ADFS 2.0
Hi,I am setting up ADFS 2.0 as identity provider and service provider. Does anyone know where I can disable http post and redirect binding as identity provider and enable artifact binding?Thanks in...
View ArticleClaims to Windows Token Service (C2WTS) - Unable to delegate the retrieved...
ServersADFSSERVER - Windows Server 2008 R2 Standard x64- ADFS 2 RCWEBSERVER- Windows Server 2008 Standard x64- Windows Identity Foundation- Trusted for delegation- Correct SPN configuration- Delegates...
View ArticleAD FS 3.0 custom claim rule to pass objectGUID in the...
I am working with a client to establish SAML 2.0 authentication, and specifically pass objectGUID in the SAML assertion for use due to its uniqueness and immutability. However, for some unknown reason,...
View ArticleAD FS Windows Authentication Throws 400 Bad Request
I was referred here by someone from the Windows Directory Services forum. Please advise if I'm posting in the wrong place.AD FS 3.0 (part of Windows Server 2012 R2) is installed in preparation for...
View ArticleClik here to view.
Misconfiguring ADFS, /EnrollmentServer/DeviceEnrollmentWebService.svc, unable...
Hi,New in ADFS configuration. I was trying to build a demo on workplace join of w8.1 client VMs to ADFS firm.1) I have created a new ADFS with a domain name MytestlabADFS.Mytestlab01.onMicrosoft.com2)...
View ArticleADFS with Web Application Proxy
In a configuration where ADFS Web Application Proxy servers are used - does the back-end ADFS server require Internet Access? I can not seem to find any documented information on this... While the...
View ArticleHow do you get AD attributes via OAuth?
With Azure Active Directory, if you have a native client you can use ADAL and then the Graph API to get information about the user e.g. Groups.With ADFS 3.0, you can use ADAL / OAuth to get the token....
View ArticleSP initiated SSO not working
Environment: ----------- IDP: ADFS 2.0 on Win2008 Server R2 RP: SAML 2.0 based Service Provider that we are developing Issue: ------ SP initiated SSO works fine once in a while and fails most of the...
View Article