How to pass SAML token from my MVC Application to WCF Service
What is the best approach to do this ? i searched and i found out one way is identity delegation is there any other way to achieve this
View ArticleADFS errors on single account
A single account receives invalid username and password errors logging into O365 OWA via ADFS. The Server 2012 R2 ADFS server logs Event 364 " Encountered error during federation passive request" and...
View ArticleAD FS 2.0 proxy sign-in page is blank
We have a single internal AD FS 2.0 server and a single AD FS 2.0 proxy server. I am not sure when it happened, but the AD FS 2.0 proxy server sign-on page is blank. The page I'm referring to is...
View ArticleWAP/ADFS/Kerberos Constrained delegation SSO and "keep me signed in"
We have setup a wap and an adfs server to work with Kerberos constrained delegation accessing a SharePoint 2013. Everything works fine (even the WAC integration) except for the persistence of the auth...
View ArticleADFS 3.0 Form Based Authentication is not working properly from internet
Hi,We have 2 ADFS 3.0 servers load balanced by F5. F5 is behaving as a proxy as we don't have WAP for our ADFS farm. CurrentlyWindows Integrated Authentication is being set for intranet and Forms based...
View ArticleADFS - How to change SAML Issuer via custom claim rule
One of rely parties has a special requirement for the SAML Issuer received at their internal App. It has to be a string of the company name but not default format...
View ArticleWhy is idpininitiatedsignon.aspx necessary?
We've hired a MS partner to setup our AD on Azure.Their network guy has asked us to create a DNS A record that points to https://ourdomain.com/adfs/ls/idpininitiatedsignon.aspx.This seems a bit...
View ArticleCan my setup use ADFS?
Hi All,My company have many customer servers stored in external third party data centres. Each server is not a DC and is just a single server in a work group.At the moment if we want to remote desktop...
View ArticleWindows Identity foundation usage with both userid /passwords and intranet...
Hi,We are using a web application where we would need to implement authentication where we have userid and password option and also a checkbox which says single signon.If the web application is...
View ArticleClaims rule conditional statements
Hello,I was wondering if anyone could help me write a claims rule. I need a claims rule in a relying party trust to do the following:If the incoming claim userID does not specify a domain such as...
View ArticleSeamless SSO for externally connected clients?
Hi,We just started playing with AD FS to be able to get SSO for our users since we moved to Office 365.We use split-brain DNS so when a domain joined client access Office 365 the user is sent to our...
View ArticleADFS DNS Configuration
Hi,We are planning to Have ADFS environment to run at DR site and I have some doubts about DNS configuration for adfs URL (adfs.xyy.com)My Environment –ADFS URL (adfs.xyz.com) which has entry in...
View ArticleOfficial ADFS 3.0 documentation? (specifically OAuth administration and...
(I was asked by a moderator in this thread to ask this question here)I'm having a hard time finding the official documenation for ADFS 3.0, specifically with regards to how to manage and develop for...
View ArticleMultiple ADFS Server on one WAP
Is it possible to publish two different ADFS Servers, which are not in the same farm, with one WAP Server? If yes, how you can do this?Thanks for your help.
View ArticleADFS 3.0 Client certificate authentication not working
Hi AllI’ve just rolled out ADFS 3.0 within my company and everything is working great but now I would like to enable Client certificate authentication and this is where the fun has started. My...
View ArticleAzure AD SSO and adding custom SAML 2.0 relying parties
Hi all,I was looking at the SSO options of Azure AD and they provide a catalog with a bunch of preconfigured "relying parties": http://azure.microsoft.com/en-us/gallery/active-directory/#allWhat if I...
View ArticleEnabling ADFS/SSO on an IIS Web App - How?
Hi all, I've got an instance of ADFS 2.0 set up in our organization, complete with an external ADFS proxy. It's currently used for accessing 3rd party apps using Single Sign On. ADFS works extremely...
View ArticleADFS 3.0 SSO idp initiated
I would like our business partner to be able to do idp initiated single sign on using SAML-P to access claims aware application on my company side. So basically on my side we have:1. ADFS 3.0...
View ArticleIssue with usage of whr in ADFS 2.0
Hi,I am trying to avoid home realm page and read few blog and came to know that i need to use WHR parameter. But i am not able to make it work. Can any one tell me steps to achive it. Scenario: WIF is...
View ArticleSAML SP, ADFS IDP, integration
I see other threads very similar to this, but we have been unable to pick this apart so far. We have an SP constructed of PHP, using the SimpleSAMLPHP library, and we're trying to interoperate with...
View Article