1,316 questions
1,316 questions with Microsoft Security | Active Directory Federation Services tags
2 answers
Problem adfs farm
Hello, They could help me, I have a problem in farm adfs, I have a primary and a secondary adfs and they are in a Microsoft NLB, when I restart my primary adfs the entire authentication environment falls, I validated all certificates in the adfs and…
Microsoft Security | Active Directory Federation Services
asked 2020-06-22T21:41:02.323+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 81%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Alan Ferreira Maia
26
Reputation points
answered 2020-06-24T17:40:04.383+00:00
Alan Ferreira Maia
26
Reputation points
1 answer
One of the answers was accepted by the question author.
ADFS (WAP) not recoginzing/handling as internal traffic
Have a WAP with ADFS (4.0). All traffic (internal and external) is going through the same WAP. The internal traffic is not recoginized as such. If I change the autehntication mode internally to certificate and WIA only, it still shows me the form…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-23T08:02:10.21+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 8%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECT%3C/text%3E%3C/svg%3E)
Christoph Thurnheer
81
Reputation points
accepted 2020-06-23T13:34:53.903+00:00
Christoph Thurnheer
81
Reputation points
2 answers
One of the answers was accepted by the question author.
Azure free account upgrade
I can,t upgrade for continued access to Azure my free Azure account
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-23T08:14:22.833+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 56.00000000000001%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWW%3C/text%3E%3C/svg%3E)
Wlodzimierz Wojtasiak
106
Reputation points
commented 2020-06-23T09:07:11.283+00:00
Leon Laude
86,031
Reputation points
1 answer
can i build and manage the adfs, not using Azure ad??
can i build and manage the adfs, not using Azure ad?? I do not want to use Azure AD just wanna On-premise adfs
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-22T07:23:35.587+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 62%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
choigeunchang
1
Reputation point
answered 2020-06-22T07:32:07.9+00:00
T. Kujala
8,766
Reputation points
2 answers
One of the answers was accepted by the question author.
ADFS Custom rule: Send Value based on OU membership
We are a community college and I want to make a custom rule in ADFS based on OU membership. This rule must send out value 'Employee' or 'Student' based on the OU the account is located in. I can't use AD groups because there isn't any group…
Microsoft Security | Active Directory Federation Services
1,316 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 13%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
2 answers
Can't sign-in through ADFS when ExtranetLockout is enabled
I have two AD forests with two-way trust (selective authentication): prod.com and clients.com. Schemas in both forests were updated to Windows 2019 by adprep. There are ADFS and WAP servers with Windows 2019 in prod.com. (Upgraded from Windows…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-15T19:51:44.397+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 49%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EID%3C/text%3E%3C/svg%3E)
Ivan Doskochynskyi
21
Reputation points
commented 2020-06-17T15:34:11.677+00:00
Ivan Doskochynskyi
21
Reputation points
1 answer
.NET Mvc app with MS Azure Authentication refresh
've integrated the Azure authentication in an MVC application via Owin libraries. HttpContext.Current.GetOwinContext().Authentication.Challenge( new AuthenticationProperties { RedirectUri = baseurl + "Login/Index", AllowRefresh = true…
Microsoft Security | Active Directory Federation Services
1,316 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,221 questions
asked 2020-06-16T08:34:59.207+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 42%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFA%3C/text%3E%3C/svg%3E)
Francesco Ancona
1
Reputation point
answered 2020-06-16T12:15:23.583+00:00
Leon Laude
86,031
Reputation points
1 answer
Changing ADFS 3.0 service account (Server 2012 R2)
There are many post on how to change the service account by using the following script: ADFS3.xChangeSvcAcct.ps1 https://gallery.technet.microsoft.com/scriptcenter/Active-Directory-ddb67df0#content However, what I do not think is clear is how to…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-03-31T14:18:15.857+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 78%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMV%3C/text%3E%3C/svg%3E)
Max V
1
Reputation point
commented 2020-06-16T10:32:44.057+00:00
Pierre Audonnet - MSFT
10,191
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
New to ADFS (setup/diagram)
I am new to ADFS and I want to use one but don't know what the architecture would look like. For Internal use. Am I right to use this diagram? What ports are needed to communicate between the ADFS and DC? Do I need to use ADFS proxy for…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-07T08:29:41.917+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 15%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
Janus Bariñan
1,126
Reputation points
accepted 2020-06-16T06:48:58.633+00:00
Janus Bariñan
1,126
Reputation points
1 answer
ADFS for two forest with two way bi-directional trust
Hello Experts, I have a scenario, in which we have two seperate forests A and forest B. There is a two way bi-directional trust between them. I have ADFS in forest A and there are many relying party applications ( SAML based ) in forest A. I want…
Microsoft Security | Active Directory Federation Services
1,316 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 44%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPD%3C/text%3E%3C/svg%3E)
5 answers
One of the answers was accepted by the question author.
ADFS 2016 - Bypass Login Page using Local Claims Provider
Hello, I am on ADFS 2016 and I would like to bypass ADFS login page and use RESTful API to authenticate users stored in an LDAP Directory (Declared as Local Claims Provider). SAML 2.0 : apparently not possible to use REST API. =>Can you…
Microsoft Security | Active Directory Federation Services
1,316 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 93%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECD%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Deny Administrators Login to the ADFS page
Is it possible to deny Administrators Login ADFS because I do not want anyone outside the network to guess the Administrators' password of my domain instead of Access Control Policy? (Because I found that only denies the users cannot sign on to another…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-03-28T18:58:38.957+00:00
Hau Kit Wong
71
Reputation points
commented 2020-06-13T17:43:11.383+00:00
Hau Kit Wong
71
Reputation points
1 answer
One of the answers was accepted by the question author.
Can I custom other webpage in ADFS?
I know that I can custom the ADFS login page and I have done my customization. Still, I want to ask can I custom other webpages, especially the page when the user login successfully (like the picture that I attach). Thanks for your help!
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-11T16:42:00.1+00:00
Hau Kit Wong
71
Reputation points
accepted 2020-06-13T14:50:28.403+00:00
Hau Kit Wong
71
Reputation points
1 answer
Password reset does not stop access if valid MFA token
Using MFA Server with ADFS Adapter If a MFA enabled user changes their password, email is still accessible on phone without having to change password, assuming until token expires. I have read with Azure AD the refresh token would require the device…
Microsoft Security | Active Directory Federation Services
1,316 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,221 questions
asked 2020-06-09T16:35:27.99+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 89%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERC%3C/text%3E%3C/svg%3E)
Robert Cook
1
Reputation point
commented 2020-06-12T21:00:35.917+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 44%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Saurabh Sharma
23,851
Reputation points Microsoft Employee
Moderator
2 answers
ADFS 4.0 on 2019, Device Registration Service - deleted Relying Party Trust
I am really struggling with this one. I installed ADFS 4 on 2019 (yes, 2019 forest and domain levels), topology is one back-end federation server for the farm, one database server (SQL, not WID). Haven't even setup the WAP yet...was playing with Device…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-09T23:55:56.65+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 17%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EW%3C/text%3E%3C/svg%3E)
wizardberry
1
Reputation point
answered 2020-06-12T01:25:21.827+00:00
wizardberry
1
Reputation point
1 answer
One of the answers was accepted by the question author.
Migrating server to another network
Hi, I need to change the IP of the server that has the function of ADFS only. Are there any problems? Thank you.
Microsoft Security | Active Directory Federation Services
1,316 questions
1 answer
One of the answers was accepted by the question author.
Looking for the best solution to integrate azure AD with on-prem and other subsidiaries to share teams, calender, sharepoint online.
we have our AD domain in azure for example as abc.com with on-prem as abc.local, we want to connect for single sign on. Also looking for a solution to connect other subsidiaries for example def.com, xyz.com etc to share teams, calendar, sharepoints with…
Microsoft Security | Active Directory Federation Services
1,316 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,221 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 50%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
0 answers
ADFS External access - new and trying to find some guides/guidance
For the most part I have ADFS working when accessed internally. However the main purpose for us implementing ADFS was for external access. We want to have ADFS be the primary authentication method for employees who have no VPN, or access to the domain…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-01T15:03:16.713+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 66%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJH%3C/text%3E%3C/svg%3E)
Jesse Hall
1
Reputation point
commented 2020-06-08T20:49:32.64+00:00
Jesse Hall
1
Reputation point
1 answer
One of the answers was accepted by the question author.
Web Application Proxy with IIS client certificate authentication behind
Dear all, I have running a WAP (Server 2019) and an IIS (10.0). On IIS, a website is running, https://te.contoso.com/. A subfolder (te.contoso.com/subfolder) is protected by one-to-one client certificate authentication. This is working fine, as…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-04T18:08:03.78+00:00
Christoph Thurnheer
81
Reputation points
commented 2020-06-06T19:58:36.113+00:00
Christoph Thurnheer
81
Reputation points
1 answer
One of the answers was accepted by the question author.
Certificate trust validation failed
After running the Microsoft Remote Connectivity Analyzer, we received a connectivity test fail while testing the certificate: Testing the SSL certificate to make sure it's valid. The SSL certificate failed one or more certificate validation…
Microsoft Security | Active Directory Federation Services
1,316 questions
asked 2020-06-03T18:57:42.127+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 56.00000000000001%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERR%3C/text%3E%3C/svg%3E)
Rodrigo Rocha
96
Reputation points
accepted 2020-06-05T19:42:39.727+00:00
Rodrigo Rocha
96
Reputation points