ADFS 2019 NonClaimsAwareRelyingPartyTrust

Marcel Palme 1 Reputation point
2021-03-23T10:32:49.453+00:00

We are currently having a problem accessing NonClaimsAware RelyingPartyTrust. We publish TFS externally and receive many error messages from event 12027 on the ADFS server. Only that the password or the username is not wrong! Access then also works, but before that access is very often denied. I suspect that the error is to be found in some temporal relationship between TGT and tokens from ADFS. Does anyone know such behavior? MfG Marcel

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,261 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Marcel Palme 1 Reputation point
    2021-03-26T05:26:48.247+00:00

    I am using ADFS 2019. The WAPS are a domain member. The delegation to the WAP computer accounts contains the HTTP SPN's of the Sharepoint server. A HA proxy (passthrough) is used as a load balancher between the WAPs and ADFS. All servers are in the same domain. The configuration works 90%

    This is the event that I get:

    Web Application Proxy encountered an unexpected error while processing the request.
    Error: The user name or password is incorrect.
    (0x8007052e)

    I have only noticed these errors since I connected my adfs to a syslog server. before i had thought that users really entered their passwords incorrectly. But that is definitely wrong - users enter their password correctly

    Marcel


  2. Nicholas Hutchens 1 Reputation point
    2022-03-10T21:53:03.777+00:00

    Similar issue here, was there ever a resolution found?

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.