NameIdentifier Issue in ADFS
Hello,We have been using our ADFS 2.0 in the last few years, from Zendesk to SalesForce and recently O365. Last week we migrated our Warsaw users mailboxes from on-premise to O365. We also changed...
View ArticleWhy does ADFS Redirects to itself during sign-in process?
During sign-in into ADFS via a browser, there appears to be an "extra re-direct" call to the ADFS WS-Federation/SAML endpoint "/adfs/ls" before sign-in is successful.Although, the extra re-direct does...
View Article"No registered protocol handlers" error following installation of ADFS 3.0 on...
I am trying to install ADFS 3.0 on a Server 2012 R2 VM that I've created from the Server 2012 R2 Datacenter VM template on Azure. The server has no other roles on it (and no IIS because ADFS 3.0 does...
View ArticlePublishing Google Apps or other web application with ADFS 2012r2 where we...
Is it just me or does using the Web Application Proxy for ADFS 2012r2 completely break the ability to federate claims aware web applications where you don't have access to the certificate that the URL...
View ArticleASP.NET 5 vNext Core CLR Support for OpenID Connect, ACS
When will you be supporting OpenID Connect, ACS etc in ASP.NET 5 vNextMrAlikor - Coding away as Usually
View ArticleError executing child request for handler 'ASP.signin_aspx'.
In my web.config for ADFS 2.0, I replaced the reference to FormsSignIn.aspx with SignIn.aspx and implemented the sign in page. The page seems to compile fine but I get an error when executing:Error...
View ArticleWhy does ADFS redirect to itself during sign-in process?
During sign-in into ADFS via a browser, there appears to be an "extra re-direct" call to the ADFS WS-Federation/SAML endpoint "/adfs/ls" before sign-in is successful.Although, the extra re-direct does...
View ArticleOur local AD's legacy NETBIOS name has a (.) period in it, possible issues...
Our local domain name is similar to "ad.corp.com", but it's legacy NETBIOS name is "corp.com". As you can see there is a (.) period in the domain's NETBIOS name and is the result of a naming decision...
View ArticlelastLogon attribute not updated in user ADFS federated logon
We have a situation where part of our users only use their AD domain account for ADFS federated logon.Problem is that, the lastLogon attribute does not update, when the user makes an ADFS logon. That...
View ArticleADFS relaying party trust Encryption tab?
This is kind of a dumb question, but I wasn't really able to find a good answer.So in a relying party trust there is an encryption tab. What would be the benefits of having this configured over leaving...
View ArticleADFS 2.0: Portal with many iframes triggers "MSIS7042: The same client...
We have a portal website that embeds a number of iframes, each of which points to various ADFS protected applications. After we first login, sometimes we get an ADFS error message and this event in the...
View ArticleThe NameIdentifier element wasn't found in the AuthenticationStatement...
Hi,I am currently being migrating from Rackspace to Office365. I have setup ADFS 2.0 in Farm with ADFS Proxy. When I try to sign in to portal I am getting below error.Sorry, but we're having trouble...
View ArticleClaim type for for consuming SAML2 attributes in ADFS 2.0
Hi Guys,i am trying to use ADFS 2.0 with Shibboleth IdP which issues attribute statements in uri format eg. urn:mace:dir:attribute-def:uid, when i try to enter a rule in ADFS 2.0 for this Claims...
View ArticleADFS 2.0 claim rules for consuming SAML CA Site minder assertion
Hello,I am using ADFS 2.0 as a service provider and CA Site Minder as an IDP which issues SAML attributes in the form of:<ns1:AttributeStatement> <ns1:Subject>...
View ArticleADFS google SSO question
Hi There! I am quite new to ADFS, and i am trying to configure SSO, to connect to google with my AD accounts, i configured google and ADFS, but my question is: can i use ADFS for SP initiated sso? I...
View ArticleADFS - WAP disable HRDCookie bug
I am trying to disable the msisipselectionpersistent cookie, as I want my users to always be able to choose between the identity providers.If I do not use a Web Application Proxy, and execute the...
View ArticleIP address based HRD in AD FS Windows Server 2012 R2
Hi,At this moment I'm doing a project for a large financial customer in The Netherlands who plans to upgrade their AD FS 2.0 farms to AD FS Windows Server 2012 R2 (3.0).The reason this customer needs...
View ArticleADFS 2.0 - client ip address
Does anyone know if it is possible to embed the client IP Address into an ADFS token please? If so does anyone have any pointers as how to do this?Many thanks Simon
View ArticleADFS URL and Office 365
I have installed and configured ADFS 3.0 with O365 per article:http://blogs.technet.com/b/rmilne/archive/2014/04/30/how-to-install-adfs-2012-r2-for-office-365-part-3.aspxHowever I just want to know,...
View ArticleHow to create ADFS 3 WAP- certificate request
Hi,We are using ADFS 3.0 / Windows 2012R2 and WAP https-certificate is going old.My question is how to create certificate request which i can send to trusted CA without IIS? Found some instructions how...
View Article