Setup ADFS in my home lab. There’s a single server called rak1adfs01.raxnet.global. The ADFS service is called adfs.raxnet.global and in DNS this is a CNAME to the server. When I go to https://adfs.raxnet.global/adfs/ls/IdpInitiatedSignon.htm I get a login prompt and even though I enter the correct credentials it doesn’t let me in. This is unlike what […]
How to change the Promary ADFS federation server when using ADFS configured to used Windows Internal Database to store the configuration: On the server you want configure as the new Primary: Set-AdfsSyncProperties -Role PrimaryComputer On the old primary (now secondary) Set-AdfsSyncProperties -Role SecondaryComputer -PrimaryComputerName FQDN.Primaryservername.here To see the status of the ADFS server (Primary/Secondary): Get-AdfsSyncProperties […]
Symptom: On the current WAP server wapserver1, the WAP remote access management console display a server called server2. How to remove this server from the cluster list? Solution: Connect on the wapserver1, open a powershell prompt: Swpc –ConnectedServersName ((gwpc).ConnectedServersName –ne ‘server2.domain.local’) gwpc to display the list of WAP servers. -Restart WAP Service
ADFS running on Windows 2019 in a cluster containing two hosts. After changing the certificate for SSL and Service-Communications using the following commands: Set-AdfsSslCertificate –Thumbprint XXX Set-AdfsCertificate -CertificateType “Service-Communications” –Thumbprint XXX Restarted the adfs service The login page shows now: In the event log of ADFS I can see the following: There was an error […]
Windows Server 2012 R2 running ADFS “Replacing the SSL and Service Communications certificates go hand-in-hand. Any time you are replacing one of these certificates, you must also replace the other. SSL certificates exist on all Federation Servers and Federation Server Proxy servers. Service Communications certificates only exist on Federation Servers”. As you already know AD […]
Recently, I had the opportunity to upgrade ADFS server runs on 2012. I was able to upgrade 2012 server to 2019 via Windows in-place upgrade without reconfiguring or rebuilding entire server. This a very brife write up on how to do this. **It is best to backup or take a proper snapshot of the server […]
Here after you will find step-by-step guide to deploy ADFS on Windows Server 2019. Standard deployment topology For deployment in on-premises environments, Microsoft recommend a standard deployment topology consisting of one or more AD FS servers on the internal corporate network, with one or more Web Application Proxy (WAP) servers in a DMZ or extranet […]