What is the difference between FBL 3 and FBL 4 in ADFS

Question

Hi Team,

I am currently running on ADFS 4.0 on windows 2016 with Farm Behaviour Level 3. planning to move to windows 2022 , FBL 4.

Can you let me know the difference between FBL 3 and FBL 4. I do not see any detailed document on this.

Thanks,
Saravanan A.

Answer 1

Hello,

Thank you for posting in Q&A forum.

According to my search, I did not find the specific difference between FBL 3 and FBL4. But I found the following content for you, maybe it is useful for you.

You can join an AD FS server of a later version to a farm with a lower FBL. The farm operates at the same FBL as the existing node(s). When you have multiple Windows Server versions operating in the same farm at the FBL value of the lowest version, your farm is "mixed." However, you can't take advantage of the features of the later versions until you raise the FBL. If your organization is looking to test the new features prior to raising the FBL, you need to deploy a separate farm. Upgrade an AD FS farm by using Windows Internal Database in Windows Server | Microsoft Learn

If you're upgrading to AD FS in Windows Server 2016 or later, the farm upgrade requires the AD schema to be at least level 85. If you're upgrading to in Windows Server AD FS 2019 or later, the AD schema must be at least 88. Upgrade an AD FS farm by using Windows Internal Database in Windows Server | Microsoft Learn

AD FS 2016 introduced Microsoft Entra multifactor authentication as primary authentication so that OTP codes from the Authenticator App could be used as the first factor. Beginning with AD FS 2019 you can configure external authentication providers as primary authentication factors. Additional authentication methods with AD FS in Windows Server | Microsoft Learn

I hope the information above is helpful.

Best Regards,

Yanhong Liu

============================================

If the Answer is helpful, please click "Accept Answer" and upvote it.