ZEN and The ART of ADFS Implementation–Part 1 of 5: Introduction
In this series of posts, I would like run through the steps to configure, A federation trust relationship to allow users in one organization (the account partner organization – CHI Forest) to access Web-based applications or services, which are secured by AD FS 2.0, in the other organization (the resource partner organization- ZEN Forest).
I know there are several SharePoint guys like me out there, who would like to have a step by step documentation on ADFS certificates creation and federation between two forests. Hence I have tried to capture screenshots for all the steps.
I have split the post into the following chapters for simplicity,
ZEN and The ART of ADFS Implementation–Part 1 of 5: Introduction
ZEN and The ART of ADFS Implementation–Part 2 of 5: ADFS Certificates and Accounts setup
ZEN and The ART of ADFS Implementation–Part 3 of 5: ADFS Deployment Steps
ZEN and The ART of ADFS Implementation–Part 4 of 5: SharePoint 2010 Integration
ZEN and The ART of ADFS Implementation–Part 5 of 5: ADFS Federation between Two forests
The diagram below indicates Typical ADFS Federation between two forests.
![clip_image002[10]](https://msdntnarchive.blob.core.windows.net/media/MSDNBlogsFS/prod.evol.blogs.msdn.com/CommunityServer.Blogs.Components.WeblogFiles/00/00/01/40/27/metablogapi/3240.clip_image00210_3D87FB73.jpg "clip_image002[10]")
NB: Please Read before jumping to the steps.
Since this is a lab environment,
I am not using a Public domain. I have put host header values in Lab Machines so that it can access the ADFS service endpoints. I will explain these once we go through the steps.
I am not using any 3rd party certificates and I am using Internal CA certificates throughout this lab setup.
I have not gone through the steps for SharePoint 2010 deployment as already there are Tons of Material out there.
Now the above statements means there is no Perimeter network or the internet in my lab setup, but this will not affect the steps to configure the ADFS federation between two forest and I will callout changes required if any.
![clip_image003[5]](https://msdntnarchive.blob.core.windows.net/media/MSDNBlogsFS/prod.evol.blogs.msdn.com/CommunityServer.Blogs.Components.WeblogFiles/00/00/01/40/27/metablogapi/1373.clip_image0035_3EBC6E85.png "clip_image003[5]")
ZEN Forest Lab Configuration
ZEN_DC – Server 2008 R2, 1 GB RAM, 2.13 GHZ
ZEN_ADFS - Server 2008 R2, 1GB RAM, 2.13 GHZ
ZEN_SP2010 - Server 2008 R2, 1GB RAM, 2.13 GHZ
CHI Forest Lab Configuration
CHI_DC – Server 2008 R2, 1 GB RAM, 2.13 GHZ
CHI_ADFS - Server 2008 R2, 1GB RAM, 2.13 GHZ
CHI_WIN7 – Windows 7 Client, 1GB RAM, 2.13 GHZ
Stay tuned for the remaining part of the series !!
Happy Reading!
Cheers,
Sarath