Clik here to view.
Is there any downside to having two ADFS servers in a domain?
We are working with a big client who wants to have two completely separate environments for a CRM 2011 installation. And that would go down to having two separate ADFS servers in the domain. Are there...
View ArticleClik here to view.
Purpose of the adfssrv-service
The setup for ADFS 2.0 installs a new service adfssrv in addition to the ADFS website. What is the purpose of this service? The documentation does not contain any information about it. This is the...
View ArticleClik here to view.
ADFS 2.0 Farm – How do I perform an immediate sync
We’re using ADFS 2.0 on a windows 2008 server, it’s in a farm and has the default polling interval of 5 minutes. We’re making a change tonight and would rather sync immediately than wait for the other...
View ArticleClik here to view.
Does an ADFS v2 server have to be on the actual domain server?
Can an ADFS v2 server be installed stand-alone, or is it tightly coupled with the AD server? Not recommended on a DC. It must be installed on a domain member server. No workgroup boxes allowed. Check...
View ArticleClik here to view.
ADFS Encountered error during federation passive request
I have an ADFS Farm and 2 ADFS proxy servers. The proxies are NOT members of the domain. This morning the proxy servers stopped being able to serve up FederationMetaData.xml. The FS servers are...
View ArticleClik here to view.
ISA 2006 , two listeners on the same port with different certificates and...
I couldn’t find an clear answer to the question : -Does ISA 2006 support more than 1 listener on the same port (HTTPS /443 , with the same certificate / and different method of authentication – one to...
View ArticleClik here to view.
Setting up an ADFS 2.0 development environment with two or more domains?
I’m trying to set up a claims-aware web app development environment. I am new to ADFS 2.0 and ultimately, I want to be able to authenticate against two different domains. I think I am very close but...
View ArticleClik here to view.
Bulk update displayname attribute to match cn attribute for all AD groups
We are setting up ADFS for identity federation with a Microsoft Online service. The documentation states that “Groups without a displayname will NOT get synchronized…” We have over 250 groups that...
View Article