Share via

ADFS - move productive WAP to DMZ

Christian Massone 171 Reputation points
2023-02-17T12:37:51.4066667+00:00

Hello community,

A customer has an existing ADFS farm with 2 WAP servers. The WAP servers were installed in a DMZ network but as domain members and then configured for WAP.

My task is to take the two WAP out of the domain.

My first consideration was the following:

  • Take the WAP servers out of the domain
  • put the name and IP of the ADFS and the redundant WAP in the hosts file.
  • add the name and the IP of the WAP servers in the DNS

Is that it? Or have I not considered something?

Do I have to proceed differently for this project?

Greetings

Chris

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Server | User experience | Other
Accepted answer
  1. Thameur-BOURBITA 36,266 Reputation points Moderator
    2023-02-17T13:41:51.48+00:00

    Hi @Anonymous

    Before moving WAP server to DMZ zone , you should check if :

    You can follow this link if you need to reinstall WAP proxy service correctly : How to install and configure Web Application Proxy for ADFS

    Please don't forget to mark helpful answer as accepted

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.