Active Directory
A set of directory-based technologies included in Windows Server.
5,895 questions
1,192 questions with Active Directory Federation Services tags
1 answer
What are the benefits of the existing single forest AD Domain to convert or upgrade the AD Domain Controllers from FRS to DFSR?
What are the benefits of the existing single forest AD Domain to convert or upgrade the AD Domain Controllers from FRS to DFSR? https://learn.microsoft.com/en-us/windows-server/storage/dfs-replication/migrate-sysvol-to-dfsr FFL & DFL: Windows Server…
asked 2024-05-02T06:05:39.4533333+00:00
EnterpriseArchitect
4,741
Reputation points
commented 2024-05-02T13:33:26.63+00:00
Vadims Podāns
8,941
Reputation points MVP
0 answers
Slow LDAP Query Response. AD LDAP Performance Tuning Analysis
In our environment we are getting application authentication failure through ADFS-SAML. While ADFS is doing LDAP query from AD, AD is responding slow to ADFS with query output data, which causing either delay in authentication or failure(time-out). Here…
asked 2024-05-02T07:29:08.8066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 14.000000000000002%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDB%3C/text%3E%3C/svg%3E)
Debopam Basu
0
Reputation points
asked 2024-05-02T07:29:08.8066667+00:00
Debopam Basu
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Create custom CloudAP plugin to authenticate to windows machine which is entra Joined?
My domain is federated with custom inhouse IDP and when the user tries to login in the entra joined machine as IDP CloudAP authenticates the user right? Is it possible to create custom CloudAP Plugin so after user enters the password our idp can enforce…
asked 2024-02-07T12:04:04.42+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 61%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
AJ
20
Reputation points
commented 2024-05-01T19:55:20.1466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 74%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Matt Peterson
10
Reputation points
0 answers
Unable to access Azure AD SAML mobile app in android 8.0 mobile device
We have an Azure AD enterprise app which supports SAML protocol for authentication. The app is working fine when accessed from system's browser, mobile device browser or when installed on personal Android /iOS device. However, when the same app is…
asked 2024-04-23T11:47:24.5533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 87%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGK%3C/text%3E%3C/svg%3E)
Gaurav Kumar
1
Reputation point
commented 2024-05-01T04:26:03.8333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Sandeep G-MSFT
14,491
Reputation points Microsoft Employee
2 answers
Unable to verify token signature. The signing key identifier does not match any valid registered keys.
getting this below error for all new starter, and if we change the password on old user they are not able to login on O365. Sign-in error code 5000811 Failure reason Unable to verify token signature. The signing key identifier does not…
asked 2022-08-29T13:45:22.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 28.999999999999996%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENC%3C/text%3E%3C/svg%3E)
Naeem Chougle
1
Reputation point
commented 2024-04-30T17:11:40.52+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 36%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYI%3C/text%3E%3C/svg%3E)
Yordan Ivanov
310
Reputation points
1 answer
One of the answers was accepted by the question author.
Cannot enable Staged Rollout from Federation to PTA
We are currently federated to Entra ID with ADFS on premises. We are attempting to run the staged rollout feature with PTA and seamless sign on. Following this article: …
asked 2024-04-26T16:52:18.32+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 11%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB1%3C/text%3E%3C/svg%3E)
BrianSiegman-1559
41
Reputation points
accepted 2024-04-30T12:59:00.25+00:00
BrianSiegman-1559
41
Reputation points
1 answer
ADFS 4.0 2016 - can't view/browse "..federationserverservice.asmx" locally an external
After a fresh installation of ADFS on Server2016 I'am not able to open the following Url locally on the ADFS Server: https://<ADFS-FQDN>/adfs/fs/federationserverservice.asmx IE -> This page can’t be displayed Chrome -> This site can’t…
asked 2020-11-11T09:26:05.837+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 86%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
FreddyD
1
Reputation point
commented 2024-04-26T10:57:55.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 1%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERT%3C/text%3E%3C/svg%3E)
Ralf Thiessen
0
Reputation points
1 answer
Remove last Exchange server from hybrid environment
Hi, We are Company of 10K mailboxes, and now we haves moved our mailboxes to Office 365, there are no mailboxes in on-prem Exchange. Just being used for Hybrid configuration and SMTP relay. Now we are planning to remove the last server from our…
asked 2024-04-04T21:14:40.37+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 51%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERG%3C/text%3E%3C/svg%3E)
Rohit Ghosalkar
0
Reputation points
commented 2024-04-24T02:56:27.79+00:00
Jayce Yang-MSFT
1,246
Reputation points Microsoft Vendor
1 answer
windows hello for business On-Premises deployment error event
I try to deploy the on-prem HfB. We are running at domain function level of 2012R2. The single AD FS server runs 2019. I followed exactly the microsoft guide. But when I start my domain PC, the enroll process never happen. Here is the event 1021 messge…
asked 2021-10-29T05:56:08.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 50%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHS%3C/text%3E%3C/svg%3E)
Harry Sun
11
Reputation points
commented 2024-04-22T13:42:18.6566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 19%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
Seth Weber
0
Reputation points
1 answer
Issue connecting Azure Windows Server VM to Blob Storage File Share
I am having trouble connecting my Azure Windows Server VM to a Blob Storage File Share, where 25 users have been assigned permission. I have been troubleshooting this issue for the past 5 days and cannot seem to resolve it. Can anyone help me with this…
Azure Files
Azure Files
An Azure service that offers file shares in the cloud.
1,167 questions
Azure Blob Storage
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
2,436 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
950 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,192 questions
Azure Advisor
Azure Advisor
An Azure personalized recommendation engine that helps users follow best practices to optimize Azure deployments.
45 questions
asked 2024-04-22T08:29:48.6533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 47%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
Vinay
20
Reputation points
answered 2024-04-22T10:01:13.1933333+00:00
Sumarigo-MSFT
43,801
Reputation points Microsoft Employee
4 answers
Password hash synchronization is not working
I am switching from ADFS authentication to Password Hash Synchronization. I have enable the PHS successfully on AAD Connect sync and it was successful. I have changed the authentication method to PHS. However, when I tried to login to M365 portal, I get…
asked 2024-04-19T10:04:26.35+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 76%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Mohd Arif
921
Reputation points
commented 2024-04-19T13:10:28.34+00:00
Andy David - MVP
142.2K
Reputation points MVP
5 answers
Configure federation between Google Workspace and Microsoft Entra ID error AADSTS51004
Hello, After follow the steps of this guide https://learn.microsoft.com/en-us/education/windows/configure-aad-google-trust I'm testing the login. I am getting the redirect to google when try to sign in but after that I get this error: Request Id:…
asked 2023-11-17T13:12:22.49+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 39%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDO%3C/text%3E%3C/svg%3E)
Davide Orbitello
0
Reputation points
answered 2024-04-19T00:28:02.69+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 28.000000000000004%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOB%3C/text%3E%3C/svg%3E)
O365 Buddy
71
Reputation points
1 answer
ADFS integration with AWS loadbalancers
Hi, i am trying to integrate ADFS server behind AWS load balancers. Proxy server behind application load balancer and ADFs farm server behind network load balancer however i am getting a 502 bad gateway error. Any suggestions?
asked 2024-04-02T07:47:11.7466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 16%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERC%3C/text%3E%3C/svg%3E)
Rohan choudhary
26
Reputation points
answered 2024-04-17T17:30:24.62+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 57.00000000000001%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMB%3C/text%3E%3C/svg%3E)
Matt Brooks
0
Reputation points
2 answers
Azure hybrid domain join
Hi, If I enable azure hybrid azure AD join from configuration device tasks in AD connector, does the end user of these existing AD only domain joined machines experience any prompts/ issues? Thanks
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 70%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 11%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJZ%3C/text%3E%3C/svg%3E)
1 answer
Azure connector
Hi, my org has set a service account up for using azure connector, it has now come to light that the password is no where to be seen. if this password is reset, is it a case that ad sync is stopped until the new password is updated in sync settings? It…
1 answer
How to check if any application uses the IDP-initiated login endpoint in ADFS
Hello everyone, for security reasons, I want to disable the https://domain.com/adfs/ls/idpinitiatedsignon.aspx endpoint in the ADFS proxy servers. However, I need to make sure that no application is using IDP-initiated logins from the external network…
asked 2024-04-08T10:10:26.6966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 92%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJO%3C/text%3E%3C/svg%3E)
João Vitor Rosa
0
Reputation points
answered 2024-04-09T08:58:39.2733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 44%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECD%3C/text%3E%3C/svg%3E)
Claudia Dos Santos Haz (CONCENTRIX CORPORATION)
695
Reputation points Microsoft Vendor
0 answers
Failed to create AzureadKerberos (Cloud Kerberos Trust)
We are trying to establish cloud Kerberos trust to enable WHFB in our environment. However, it is giving below error. It gives error at command Set-AzureADKerberosServer. Any advise and suggestion will be highly appreciated. We have followed below…
asked 2024-04-08T11:22:38.92+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 78%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERS%3C/text%3E%3C/svg%3E)
Ritesh Sharma
266
Reputation points
asked 2024-04-08T11:22:38.92+00:00
Ritesh Sharma
266
Reputation points
1 answer
Azure Active Directory (AAD) authentication or aad B2C authentication within a PHP application
My PHP application, which is built on WordPress, currently utilizes WordPress AAD authentication with client ID and client secrets. However, I am looking to discontinue the use of client secrets. Presently, I am using the functionality available on…
asked 2024-03-29T11:58:05.8533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 9%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Arun Pradhan (MINDTREE LIMITED)
0
Reputation points Microsoft Vendor
commented 2024-04-08T04:50:48.49+00:00
Arun Pradhan (MINDTREE LIMITED)
0
Reputation points Microsoft Vendor
0 answers
Work Folders with AD FS and Web Application Proxy (WAP) - ERROR-ID 0x80072efe
DC, WF, ADFS, WAP - Win Std. 2022 The configuration does not work with an MS WAP. --> https://learn.microsoft.com/en-us/windows-server/storage/work-folders/deploy-work-folders-adfs-overview I get the following error after successfully logging in. It…
asked 2024-04-04T09:29:17.5266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 74%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETS%3C/text%3E%3C/svg%3E)
Thomas Schäfer
6
Reputation points
edited the question 2024-04-06T14:11:17.7166667+00:00
Thomas Schäfer
6
Reputation points
1 answer
Work Folders with AD FS and Web Application Proxy (WAP) - ERROR-ID 0x80072efe
DC, WF, ADFS, WAP - Win Std. 2022 The configuration does not work with an MS WAP. --> https://learn.microsoft.com/en-us/windows-server/storage/work-folders/deploy-work-folders-adfs-overview I get the following error after successfully logging in. It…
asked 2024-03-31T17:06:38.6366667+00:00
Thomas Schäfer
6
Reputation points
edited the question 2024-04-06T14:10:31.65+00:00
Thomas Schäfer
6
Reputation points