Error while requesting token from ACS(Azure).
Hi Experts, Any idea on how to resolve the below error ? I got this while requesting token from ACS.HTTP/1.1 400 Bad RequestCache-Control: no-cache, no-storePragma: no-cacheContent-Type:...
View ArticleADFS: Redirect an Unauthorized User to Another Site/Location
Hi All,I have ADFS configured successfully on Windows 2012 R2 with issuance authorization rule set to allow only specific groups. If a user who does not have authorization attempts to log in, I'd like...
View ArticleIIS Web page published through Web Application Proxy sometimes appears...
Hello! We have published custom IIS WEB Site through WAP (Web Application Proxy) using ADFS pre-authentication. Sometimes web page loads without graphics. If we press F5 page appears again normally....
View ArticlePreventing Brute Force Attacks on ADFS 3.0
Hi,We have ADFS Proxy servers (Web Application Proxy servers) in our perimeter network and have MFA configured through an external authentication provider. However, the problem is that ADFS...
View ArticleCustomising screens in Server 2012 R2
The latest invocation of ADFS and the proxy no longers runs under IIS - no more aspx pages etc.Any thoughts on customising screens?Seems somewhat of a regression because most of our customers require...
View ArticleADFS 3.0 Per Relaying party Custom authentication ISSUE
Im trying to force users to sign in on a specific Relaying Party with forms sign-in. The global setting is SSO.Even though I check the box "Users are required to provide credentials each time they sign...
View ArticleADFS 3.0 MFA
Hi,Looking for some help with ADFS 3.0 MFA.i have been testing multiple MFA with ADFS 3.0 and all works fine. However, I have not been able to find if Multiple Relaying Party Trust can use separate MFA...
View ArticleClik here to view.
ADFS with Third Party Radius Server (for 2 Factor Vasco Token Digipass...
Hello,We have ADFS setup and it's working good for sites like ServiceNow and Office 365, users off the network get the ADFS login prompt while users connected via VPN do not get it. We are working on...
View ArticleRestrict OWA for external access by ADFS 3.0 after business hours
Hello Everyone all right? I'm trying to block access to OWA for external users except for a group of AD users that will be allowed I used the article...
View ArticleNLB + X-FORWARDED-FOR replacing = ADFS validation process broken
When we enable this on ADFS enabled WebApplications, it seems that at some point the chaining is being cut off and we cannot reach the portal through NLB address, only directly through the hosts...
View ArticleSP-initiated login request in PowerPoint cann't redirect to the correct site
hi guys, I encountered a strange issue when launch sp-login request(sso based on SAML2) in powerpoint 2010: such as :https://www.zhijunfeng.com/sf/admin?company=test007,the basic logic: the link will...
View ArticleWhy AD FS 2.0 don't se SAML V2 to format for Assertions sent to RP ?
hello I installed and configured ADFS V2 to use claim authentication with WSS 3.0. (I followed the Lab guide: Federated Document Collaboration using Microsoft Office SharePoint Server 2007 and AD FS...
View ArticleADFS 3 authentication issue externally
I have an ADFS environment with 2 ADFS server and 2 WAP servers both load balanced via a Kemp Loadmaster. Everything works great except when I try to access O365 externally sometimes I get the forms...
View ArticleWIF Default Token Type
There is property called DefaultTokenType in the object Microsoft.IdentityModel.Configuration.SecurityTokenConfiguration. I can see that this property can be set via code (in the constructor of...
View ArticleWindows Srver 2012 Datacenter - ADFS - SAML 2.0 - ASP.NET MVC Question
Hi,My client (lets say Customer X)has configured ADFS on Windows Server 2012 Data Center OS. Customer X uses vendor Y services. Vendor Y has their own SAML 2.0 protocol based ADFS server. Now Customer...
View ArticleService Communication Certificate Confirmation
Hi All, just trying to confirm my knowledge of ADFS 2.0 related to the service communication certificate.We have one ADFS 2.0 server and one ADFS Proxy server. We use a 3rd party wildcard certificate...
View ArticleDifficulity getting a second WAP running to support ADFS
I currently have ADFS setup across two sites, with two servers (using NLB) at each site. I have one WAP that can communicate with all four servers. I am attempting to get a second WAP running, at the...
View ArticleADFS 2.0 with Shibboleth Idp3 - Redirection loop
ScenarioADFS 2.0 as the SPShibboleth as the IDPApacheDS as the LDAPCurrent situationADFS redirect user to Shibboleth's login page. The user authentication is working with ApacheDS. Shibboleth build the...
View ArticleADFS 3.0 login page standard Links
Hello,According to https://technet.microsoft.com/en-us/library/dn280950.aspx, I add HelpDeskLink in ADFS 3.0 login page. but Now I want to disable it, how can I do this?it is possible to disable...
View ArticleADFS 3.0 and workplace join issue
Hi,I've got working ADFS 3.0 server which I already configured to support O365 and CRM 2013 server. All is working fine and without any problems. We recently decided to add workplace join feature to...
View Article