1,222 questions with Active Directory Federation Services tags
Public DNS
I plan to setup a small (2-3 apps) with ADFS. I suppose I have to put in public DNS the ip address of a server with each app and a ip address of my adfs proxy server? Problem is that my ISP can provide me with only one external IP address and I am…
AD FS as gateway with RDG and RD brooker
Have any of you tried to use AD FS as a gateway to connect to other windows via RDP? I would like to achieve redundancy between these windows connected to the FS. The first window goes down, the FS directs it to the second or third window. Something like…
How to find how many token request received per Relying party
Hi Experts, Could I know on ADFS Server to find how many token requests received from Relying Parties, we have got 5 RPs and wanted to know how much of they consume ADFS as we are going for capacity planning. One of the RP is O365 and others are 3rd…
ADFS 2.0 - how to get users from groups within a specific OU
Hi, Thanks in advance for anyone who can assist on this issue. Am running ADFS 2.0 on Win2008R2 SP1 and encountered some problems. The purpose is to get the users in the different groups inside the specific OU and rely it to a 3rd party app. So…
![](https://techprofile.blob.core.windows.net/images/8d3870ddab9a429594c7132766a66e5d.png)
User keeps prompting for password
Hello Expert, I am facing some issues in one of the scenaio, From one of the server in DMZ running windows 2012R2 done below steps. Network diagram is F5 VIP > 1 WAP server >Internal FW > 1 ADFS server On W2K12 R2 > open IE >…
ADFS requires appending domain name to username
Currently the way our ADFS 4.0 on Windows 2019 datacenter is set up, users need to add @Anonymous .company.com to their username to be able to log in successfully. We added (what I feel is a bandaid solution) a JavaScript that appends that qualifier…
![](https://techprofile.blob.core.windows.net/images/8d3870ddab9a429594c7132766a66e5d.png)
Azure fedrated and question about moving FSMO roles to the cloud
Dear all We took on a new client and they are using federated for Azure authentication for some of their domains. I know that this means authentication is done on-premises and is the key factor for companies to use this option compared to the likes of…
![](https://techprofile.blob.core.windows.net/images/wJAMZRVnz0q26wI9-jDwZg.png?8D8439)
![](https://techprofile.blob.core.windows.net/images/ZmCqtj76I02bBVBh5r7-eQ.png?8D81C8)
Migrate Azure AD AAD Connect federation to another ADFS farm
Hi, Because of a name change in our company we need to migrate all relying parties from one ADFS to another. How can I migrate the AAD Connect federation with Azure AD to anonther ADFS farm? Any help would be appreciated.
Can one ADFS proxy associate with multiple ADFS server?
Hi, I need to upgrade ADFS from windows 2008 R2 to Windows 2019. We have 10+ Relying party trust on the old ADFS. To minimize the impact, I plan to prepare a new ADFS so I can migrate them one by one to reduce the down time. Below are my questions. …
AD FS Web App Proxy authentication stuck at login adfs screen
We're having a weird issue. I've configured my AD FS WAP for use with Office 365. I use split DNS with internal DNS pointing to the AD FS server and external DNS pointing to the AD FS WAP which is on a DMZ domain in my DMZ. The Office 365 RCA says it's…
![](https://techprofile.blob.core.windows.net/images/8d3870ddab9a429594c7132766a66e5d.png)
Creation of account in AAD if domain is federated allowed?
Hello all I have global admins in AAD but I can't see the domain name I want in the drop down when I create a new user. I checked custom domains and I can see the domain I want to use is verified. It is is federated and perhaps this s the issue? I must…
![](https://techprofile.blob.core.windows.net/images/wJAMZRVnz0q26wI9-jDwZg.png?8D8439)
![](https://techprofile.blob.core.windows.net/images/wJAMZRVnz0q26wI9-jDwZg.png?8D8439)
Azure ADFS 2019 Azure SQL/mi Options?
We want to do a cut over from ADFS 3.0 to Azure 5.0 (2019) in the cloud. I read that Server 2016 ADFS does NOT support Azure SQL, we tired with 2019 and it did not work either, could not find the Database from the wizard. Should we try SQL mi or since…
/adfs/services/trust/13/windowsmixed HTTP ERROR 400
Hello All, we have the following end point enabled on our ADFS 2012 server /adfs/services/trust/13/windowsmixed the full url is https://xxxx.xxxx.xxx/adfs/services/trust/13/windowsmixed , however when we try to browse the url on the any browser we…
![](https://techprofile.blob.core.windows.net/images/8d3870ddab9a429594c7132766a66e5d.png)
Cross Site ADFS Requests fail when Third Party Cookie Disabled
Chrome 83 have disabled Third Party Cookie in Incognito, and are looking to implement in the standard browser in Jan 2022. I'm looking for options around handling these requests which currently fail with Third Party Cookies disabled (In Firefox as well).…
![](https://techprofile.blob.core.windows.net/images/8d3870ddab9a429594c7132766a66e5d.png)
How to configure Access Control Policy for relying party in AD FS in Powershell
I tried to configure Access Control Policy for relying party in AD FS in Powershell: Set-AdfsRelyingPartyTrust -Name "RPon2019" -AccessControlPolicyName "Permit everyone and require MFA for specific group"…
RDS presented to customer org, using ADFS for sso
Hi We have an RDS 2012R2 environment that we need to present a customer org. for ~ 1000 x users. Will be RDS web or the RDAC used by customer. We also have an ADFS farm, externally accessible. We can add in the customer's ADFS as a claims…
![](https://techprofile.blob.core.windows.net/images/8Rj5JjfnuEyUaKHZzNgAqw.png?8D8F2E)
Getting a white idpinitiatedsignon.htm page
I installed a new 2016 ADFS farm. I installed a wildcard certificate on the farm. I can browse to idpinitiatedsignon.htm, and the certificate shows that it is valid, but rather than getting the expect blue, swirly forms page I get a white background…
![](https://techprofile.blob.core.windows.net/images/8d3870ddab9a429594c7132766a66e5d.png)
ADFS / Server 2019 / AZURE-O365
I have recently built and ADFS server and WAP in 2019 Server. I have Azure AD Connect working. I have not deployed this in production at this time and want t work out all the bugs and ensure it is 100%. I go to…
Application integrated with ADFS prompt for credential every time
Hi, We have a application hosted in cloud infra and its integrated with ADFS which is available at onprem. ADFS Proxy Servers are placed at front end and NATed with Public IP Application when accessed from internal Network is working fine with…
ADFS additional authentication rule -> access control rule
On our ADFS 2016 farm we have a global additional authentication rule which I would like to change to an RPT-specific access control rule to have more flexibility. The current additional authentication rule is: exists([Type ==…