1,306 questions
Did you follow this document - https://learn.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-federated-domains? Could you please let us know which step is failing for you?
Error when trying to configure Hybrid Azure AD Joined Devices
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 94%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Jonner Pistrack
1
Reputation point
Hello,
New here, glad to have found this forum. I am having an issue trying to configure Hybrid AD join of my devices from my on-prem AD setup. I've followed microsoft's documentation to configure via the Azure AD connect wizard. After running through the config steps, and clicking the 'Configure' button, I get an error stating that there was a problem, and couldn't continue the integration. I scanned the provided log file, and saw this:
[16:58:55.305] [ 17] [ERROR] PerformConfigurationPageViewModel: An error occurred executing Update ADFS Federated AAD Trust task: Unable to update the metadata on the federated domain.
Scanning further, I also saw this:
Exception Data (Raw): Microsoft.Online.Deployment.PowerShell.PowerShellInvocationException: An error occurred while executing the 'Update-MsolFederatedDomain' command. MSIS7612: Each identifier for a relying party trust must be unique across all relying party trusts in AD FS configuration. ---> System.Management.Automation.RemoteException: MSIS7612: Each identifier for a relying party trust must be unique across all relying party trusts in AD FS configuration.
There is a step during configuration to create a service point connection, I referenced my ADFS server in the 'Authentication Service' field. I'm not sure whether this is the correct choice vs selecting 'Azure Active Directory'. The reason I chose my ADFS server is because we want our users to authenticate via ADFS for Azure AD.
My environment consists of an on-prem Active Directory, and my end goal is to sync our laptops over to Azure AD, which should in turn get synced to the Microsoft Endpoint Mananger UI, so that I may use Intune to apply polices to our devices.
Any help is greatly appreciated, thanks.
jp
Microsoft Security | Active Directory Federation Services
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,149 questions
{count} votes
-
James Hamil 27,221 Reputation points Microsoft Employee Moderator2021-02-08T20:27:16.68+00:00 Hi @Jonner Pistrack , we are investigating your issue and will update you shortly.
Best,
James -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 50%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Pa_D 1,071 Reputation points2021-02-10T08:05:07.613+00:00 Are you having a adfs farm or single adfs server?
-
Jonner Pistrack 1 Reputation point
2021-02-10T14:29:35.963+00:00 Hello, thank you for your response. I have 1 single adfs server.
Thanks,
JP
Sign in to comment
1 answer
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 32%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJR%3C/text%3E%3C/svg%3E)
Jitendra Rai 231 Reputation points2021-02-15T09:57:51.503+00:00 -
James Hamil 27,221 Reputation points Microsoft Employee Moderator
2021-02-24T21:15:22.453+00:00 Hi @Jonner Pistrack , do you still need help with this issue? If not, please mark the appropriate answer as verified.
Thank you,
James
Sign in to comment -