1,219 questions with Active Directory Federation Services tags

Sort by: Updated
1 answer

Register "development" ADFS farm for Azure MFA (against same 365 tenant/domain as "production" farm)

We have two ADFS farms registered in the same Active Directory domain - one as a "development" farm to test configuration changes, theme changes, etc, and one for "production" use. We're currently implementing Azure MFA with ADFS…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,368 questions
asked 2020-08-05T14:56:49.307+00:00
Taylor, David 1 Reputation point
answered 2020-08-06T09:17:15.273+00:00
AmanpreetSingh-MSFT 56,486 Reputation points
1 answer

chrome error with sso adfs 3 for some users

I had posted here https://video2.skills-academy.com/en-us/answers/questions/53776/chrome-sharepoint-adfs-the-same-client-browser-ses.html After some input from the end users posting the new thread. Some of our users started reported errors when…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
SharePoint Server Management
SharePoint Server Management
SharePoint Server: A family of Microsoft on-premises document management and storage systems.Management: The act or process of organizing, handling, directing or controlling something.
2,881 questions
asked 2020-07-30T21:00:22.503+00:00
Huck Finn 1 Reputation point
commented 2020-08-04T08:17:30.677+00:00
JoyZ 18,056 Reputation points
1 answer

ADFS 4.0 - HomeRealmDiscovery only during initial authentication

We have a central ADFS 2016 server, multiple claims providers (all ADFS). All authentication is handled by the other ADFS servers, nothing is done with the local ActiveDirectory claims provider. Current behavior: Every time a user logs into any…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-08-01T16:08:58.32+00:00
Ryan McGarry 1 Reputation point
answered 2020-08-04T00:21:22.14+00:00
Pierre Audonnet - MSFT 10,171 Reputation points Microsoft Employee
1 answer

ADFS login issue

Hi All, I am currently having problems login on our office365 . my adfs page seems to work but after logging in it redirects me to a microsoft page

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-08-03T12:08:20.307+00:00
D1enonly 46 Reputation points
commented 2020-08-03T16:41:43.997+00:00
Pierre Audonnet - MSFT 10,171 Reputation points Microsoft Employee
1 answer

Can I run AD FS 2.0 on Windows 2012 R2

Hello; I am using Windows 2012 R2 Active Directory, because my cloud base application provider not support ADFS 3.0 (only ADFS 2.0), can I install ADFS 2.0 on a Windows 2012 R2 server. Or, install a Windows Server 2008 R2 and run AD FS 2.0 on W2K8 R2…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-31T20:29:34.407+00:00
Kane 76 Reputation points
answered 2020-07-31T21:07:35.827+00:00
Andy David - MVP 144.4K Reputation points MVP
1 answer

LDAP Attributes in ADFS

Hi; In ADFS, when configure a claim rules for Relying Parties, when I specify "E-mail-Addresses" in LDAP Attributes, how do I know what actual email address is being used for authentication? thanks!

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-31T17:17:50.85+00:00
Kane 76 Reputation points
answered 2020-07-31T20:18:28.777+00:00
Pierre Audonnet - MSFT 10,171 Reputation points Microsoft Employee
3 answers

ADFS Site Resilience

Hi, For a customer, we configured an ADFS farm, with 2 nodes, exposed the Interned with WAP. On each site, we have one ADFS Server and one WAP. We used DNS RoundRobin for federation services publication. We plan to use Load balancing. Each WAP…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-09T09:57:25.333+00:00
Jean-Luc Ch 176 Reputation points
commented 2020-07-30T13:48:04.077+00:00
Pierre Audonnet - MSFT 10,171 Reputation points Microsoft Employee
2 answers One of the answers was accepted by the question author.

Edge not working with IdP request to ADFS 2019

We're testing to roll out Edge 83.0.478.58. If we navigate to https://ourlocaldomain/adfs/ls/idpinitiatedsignon.aspx?LoginToRP=https://partnerserver/partnerservice, Edge redirects to…

Microsoft Edge
Microsoft Edge
A Microsoft cross-platform web browser that provides privacy, learning, and accessibility tools.
2,225 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-16T16:01:23.07+00:00
Does IT Really Matter in NY 101 Reputation points
accepted 2020-07-30T13:08:22.833+00:00
Does IT Really Matter in NY 101 Reputation points
1 answer

Is it safe to place the ADFS server in local network for claims-based application authentication.

Hi; I just created my first AD FS on Windows Server 2012 R2 on LAN which is used to authenticate the claims-based application on cloud which provided by my SaaS service provider. I can authenticate with their application properly but they told me…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-29T22:35:18.813+00:00
Kane 76 Reputation points
answered 2020-07-30T12:47:21.167+00:00
Pierre Audonnet - MSFT 10,171 Reputation points Microsoft Employee
1 answer

ADFS MFA failing for some users

We are running 2012R2 ADFS with Azure MFA. The MFA handover seems to be failing for some users. They can successfully logon to Microsoft 365 Apps using MFA, but when trying to logon to On-premises or other Cloud Apps (RDWEB, Zoom, Oracle) they get…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,368 questions
asked 2020-07-29T07:27:31.073+00:00
Phil Ready 1 Reputation point
answered 2020-07-29T21:01:10.83+00:00
1 answer One of the answers was accepted by the question author.

Set custom port for ADFS Proxy (Web Application Proxy) on Windows 2012 R2

Hi; I am configuring a AD FS Proxy (WAP) on Windows 2012 R2 server, the default https port is 443 and I want to use port 8443 instead of port 443 for the https traffic coming in from my 3rd party hosted cloud system. My understand that I need to issue…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-27T18:30:18.583+00:00
Kane 76 Reputation points
accepted 2020-07-29T15:34:21.57+00:00
Pierre Audonnet - MSFT 10,171 Reputation points Microsoft Employee
1 answer

Back Up and Restore ADFS Claim Descriptions

Hi There, Is there a way to import Claim Descriptions into ADFS from a backup. I realise I can backup/export them to a file using Get-ADFSClaimDescription | Out-File “.\claimDesc.txt” but I'm not aware of a way to re-import them. I intend to make a…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-24T04:19:38.373+00:00
Broonster 46 Reputation points
commented 2020-07-29T10:16:54.737+00:00
9704244848 186 Reputation points
1 answer

How can I connect ADFS to a SQL database that's on a different domain?

Hello. We have 2 domains. The first one contains technical servers, database, etc., the second one contains supporting servers. They can't trust each other (company rules). When configuring ADFS in domain 2, I need to connect to a SQL 2016 database in…

Azure SQL Database
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-27T22:18:34.167+00:00
Kalshin 1 Reputation point
answered 2020-07-28T15:56:08.963+00:00
9704244848 186 Reputation points
1 answer

adding second adfs server

I like to confirm below steps as we are planning to add second adfs server and create a farm. Currently we have adfs running on server 2012r2 ... with adfs1.domain.com and dns entry as adfs.domain.com (using for dropbox,zoom, adobe etc etc) now…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-23T20:45:45.533+00:00
systemsT20 1 Reputation point
commented 2020-07-28T14:57:20.987+00:00
9704244848 186 Reputation points
1 answer

single adfs server to adfs farm

I have a single ADFS on premise using WID. I want to add another adfs to form a farm. I do not have an existing adfs farm as this will be the first. Can some one point me to a good tutorial on how to do this. Also, will I need sql database installed…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-23T10:45:57.717+00:00
Janus Bariñan 1,126 Reputation points
commented 2020-07-27T12:32:29.18+00:00
Pierre Audonnet - MSFT 10,171 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Block access to all relying parties

Hi, I'm curious if there is any way of blocking access to all relying parties on an ADFS instance (Windows Server 2012 R2), by denying access based on an incoming claim. I know that according to the documentation a deny rule can be implemented…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-22T10:52:59.413+00:00
Alex Negroiu 21 Reputation points
accepted 2020-07-24T09:00:43.64+00:00
Alex Negroiu 21 Reputation points
1 answer One of the answers was accepted by the question author.

ADFS error The server is not opreational"

Hi, I get a "Server is not operational" error when configuring my first ADFS. OS is windows 2016 server. I already did some research in google. Some forums say its host firewall, some say check the service account, some say the SQL service…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-06-16T06:52:09.647+00:00
Janus Bariñan 1,126 Reputation points
accepted 2020-07-23T10:38:54.493+00:00
Janus Bariñan 1,126 Reputation points
3 answers

owa published trhought adfs

my owa on my exchange server is publsihed through adfs and wap. after rebooting the server, when a user connects externally, the adfs page is launched then after inserting the username the owa page is launched in order to sign in to owa. it was…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
asked 2020-07-21T10:15:43.15+00:00
eg1995 1,131 Reputation points
commented 2020-07-23T10:30:34.193+00:00
Andy David - MVP 144.4K Reputation points MVP
2 answers

Trying to download Package from AZURE DEV-OPS to a system on a domain using ADFS from another domain

Good day Microsoft community I have two domains dev.mydomain.com corporate.paytel.com in the DEV network a developer is trying to hit https://pkgs.dev.azure.com/paytel/_packaging/PayTelVSTSNuGet/nuget/v3/index.json to pull down Visual Studio,…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,368 questions
asked 2020-07-22T19:15:28.157+00:00
Scott Cummins 1 Reputation point
commented 2020-07-22T19:55:31.25+00:00
Dave Patrick 426.4K Reputation points MVP
2 answers

Configuring Multiple UPN SSO with Azure AD and ADFS (4.0) 2016 to enable user login once via browser to all M365 services ?

People, I'm currently using Hybrid OnPremise AD-AzureAD Sync and ADFS (4.0) 2016. AD is single Forest domain. I have multiple UPN for different users spread across multiple locations. as per…

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,368 questions
asked 2020-07-15T06:56:40.91+00:00
EnterpriseArchitect 5,036 Reputation points
commented 2020-07-21T07:26:08.603+00:00
AmanpreetSingh-MSFT 56,486 Reputation points