System.IdentityModel.Metadata.WebServiceDescriptor question
What does WebServiceDescriptor.TargetScopes property represent in relying party federation metadata?The MSDN help is not too helpful:"Gets a collection of EndpointAddress that represents the target...
View ArticleGet authenticated User SID from ADFS 2.0
I have configured federation authentication and every thing is working as expected. I am able to get all the user information like displau name department nate email etc. Now i want the SID of user...
View ArticleADFS error / MSIS8108: Authentication failed.
Setup ADFS 2012 with ASP.NET MVC web app as a relying party trust in hopes of getting relying party initiated SSO going so that our internal active directory users can use our web app with their...
View ArticleADFS 2.0 and ACS (Azure): Errors ACS 20001, ACS 50008 and ACS50017
Hi everyoneI've uploaded a certificate from our trusted CA in our dev environment to ACS.Installed the certificate on our ADFS server A (as the token signing cert) which is also in the dev...
View ArticleADFS Relying Party Trust Endpoint question
In ADFS 2012 Relying Party Trust Wizard, you can add the endpoint for the passive relying party to receive the SAML token. There are three options for endpoint type:SAML Assertion ConsumerSAML...
View ArticleHow can I specify the target URL directly in the SAML request and have AD FS...
Hi all! I'm trying to implement SAML 2.0 Web Browser SSO using WIF (RTW) and AD FS 2.0 (RC). My scenario is strictly IdP-initiated. I have sucessfully sumbitted a SAML Response to AD FS 2.0. After a...
View ArticleADFS, claim rule language, string functions
Hi,With the claim rule language in ADFS 2.0, is it possible to manipulate a claim by performing fairly simple string functions: - search and replace characters - split incoming claims - etc.I have a...
View ArticleHow can I make active client service calls with the rstr from ws-federation...
I have an active client which needs to make service calls to services that are configured to accept tokens from my RP-STS ADFS 2.0 server. The way I've been accomplishing this so far is basically the...
View ArticleError ID4175 and ConfigurationBasedIssuerNameRegistry
I find myself at somewhat of an impass at the moment. I have an ASP.Net 4.0 app as my RP and a Passive STS based on the sample built by FedUtil, all very simple stuff.When I browse to my app I'm...
View ArticleProblem with IssuerToken
Hi, when I try to read a token in ReadToken method of Saml2SecurityTokenHandler I found that IssuerToken property is null! My problem is how to set this property because this one is required in...
View ArticleADFS 2.0: cluster or two standalone servers
I'm wondering if it is necessary to use SQL cluster mirroring for ADFS site resiliency and failover. I have 2 sites, connected by a site-to-site VPN I use an external host for DNS. It points to the...
View ArticleProblem with SAML 2.0 in Sharepoint
Hi I've got in SAMLResponse security token in SAML 2.0 but sharepoint doesn't support this ;/How can I write custom token handler for SAML20 for sharepoint? Thanx for any helpA SecurityTokenHandler is...
View ArticleHow to sign in user in Sharepoint
Hi, I've got from SAML response UserName. Now I would like to login that user to Sharepoint and use only UserName withour password, because it would be automatically (programatically) authentication...
View ArticleTweaking ADFS 2.0 FormsSignIn.aspx fields
Hi everyone. I've been fiddling with FormsSignIn.aspx and just can't get it to act the way I want. I'm no C# /ASP guy so there in lies my problem. I want the form to pre-populate our DOMAIN\ of the...
View ArticleWindows integrated through the ADFS proxy
I'm facing the following issue:I want to get into a web application using the Windows integrated but passingthrough the ADFS proxy. Someone can ensure me that this is feasible ? (b.t.w the ADFS proxy...
View ArticleAD FS and SiteMinder
We are planning for ADFS 2.0 implementation to provide a single sign on experiance to "internal" users for an application hosted by vendor. The vendor provides SSO through CA SiteMinder Federated SSO....
View ArticleProblem with ValidationConfirmationData in SAML
Hi, I spent many hours to solve issue with SAML2.0 in Sharepoint but under authorization process I've got a problem with confirmationData and I've got error like this:ID4154: A Saml2SecurityToken...
View ArticleAD FS 2.0 RU3 - Multiple RPs sharing signing certificates
Hi all,I'm testing AD FS 2.0 RU3, in particular one issue that is flagged as fixed:http://support.microsoft.com/?id=2790338Some relying parties require that signature certificates are applied to the...
View ArticleWIF 4.5 : Safe handle has been closed
I have a WCF service with multiple endpoints exposed with different authentication mechanisms, one of them IssuedToken, so I have turned on useIdentityConfiguration in the web.config.I have an endpoint...
View ArticleADFS 2.0 Servers
Hi Team,Consider an example , we have 4 ADFS servers in a Farm and we have ADFS with SSO.Is it possible to redirect / segregate ADFS requests to particular servers based upon thier Subnets or any...
View Article