Browse by Tags

Tagged Content List
  • Blog Post: Hate to see you go, but it’s time to move on to greener pastures. A farewell to Authorization Manger aka AzMan

    Hi all, Jason here. Long time reader, first time blogger. AzMan is Microsoft’s tool to manage authorization to applications based on a user’s role. AzMan has been around since 2003 and has had a good run. Now it’s time to send it out to pasture. If you haven’t seen this article...
  • Blog Post: ADFS: SAML Tokens and Validation Issues when Federated with TFIM

    Hi all. This is Sean again and it’s ADFS blog time! Today I’m going to touch on Security Assertion Markup Language (SAML) tokens, and an issue we’ve run into when federating with Tivoli Federated Identity Manager (TFIM) . I’ll discuss what a SAML token is, why it’s important, and what happens when TFIM...
  • Blog Post: New ADFS Content on TechNet Wiki (11/16/2010)

    Hello everyone! Adam has published a new round of content for Active Directory Federation Services (ADFS) to the TechNet Wiki. These articles include troubleshooting information and how-tos to assist you when you are evaluating, implementing, or troubleshooting ADFS. AD FS 2.0 - How to change the...
  • Blog Post: How to setup a federation with Automatic Data Processing, Inc (ADP) using ADFS 2.0

    Hey all, Rob Greene here again. We have been getting calls recently on how to use ADFS 2.0 to federate with ADP , so today I explain how. Disclaimer: If you have problems with connecting to ADP, your first call should be to them. If after talking with ADP you need further assistance you then open...
  • Blog Post: AD FS 2.0 Claims Rule Language Primer

    Hi guys, Joji Oshima here again. On the Directory Services team, we get questions regarding the Claims Rule Language in AD FS 2.0 so I would like to go through some of the basics. I’ve written this article for those who have a solid understanding of Claims-based authentication . If you would like to...
  • Blog Post: ADFS Components missing after upgrading to Windows Server 2003 Enterprise Edition

    Hey everyone, I’m Sean from the Directory Services team here at Microsoft. We support an up and coming technology called Active Directory Federation Services (ADFS). ADFS is a component first introduced in Windows Server 2003 R2 that includes web single-sign-on (SSO) that authenticate a user to numerous...
  • Blog Post: ADFS – Federated WebSSO with Forest Trust Scenario and its Limitations

    Hi, it's Adam Conkle again. Today I’d like to talk about an ADFS case I had recently where the customer ran into some limitations with their Federated WebSSO with Forest Trust setup. They had their environment set up similar to what is described in the TechNet design article : As you can...
  • Blog Post: ADFS 2.0 Content Map now up on TechNet Wiki

    Adam and co. have been busy beavers, creating a comprehensive AD Federation Services 2.0 content map over on the TechNet Wiki site. Being as this is a Wiki, they are encouraging you to contribute and edit. Considering the number of interop and customization scenarios inherent to ADFS, your experience...
  • Blog Post: Why Are ADFS Binaries Installed on non-R2 Windows Server 2003 computers?

    Hi, Warren here. I recently worked on a case where I got to do a bit of sleuthing. I found the results interesting and thought other Windows Server admins might notice the same thing this particular administrator had and wonder why. My customer has an all Windows 2003 Standard Edition environment. Windows...
  • Blog Post: Important Announcement: AD FS 2.0 and MS13-066

    Update (8/19/13): We have republished MS13-066 with a corrected version of the hotfixes that contributed to this problem. If you had held off on installing the update, it should be safe to install on all of your ADFS servers now. The updated security bulletin is here: http://technet.microsoft...
  • Blog Post: Understanding the AD FS 2.0 Proxy

    Hi guys, Joji Oshima here again. I have had several cases involving the AD FS 2.0 Proxy and there is some confusion on what it is, why you should use it, and how it works. If you are looking for basic information on AD FS, I would check out the AD FS 2.0 Content Map . The goal of this post is to go over...
  • Blog Post: Intermittent Mail Sack: Must Remember to Write 2013 Edition

    Hi all, Jonathan here again with the latest edition of the Intermittent Mail Sack. We've had some great questions over the last few weeks so I've got a lot of material to cover. This sack, we answer questions on: Issues upgrading DFSR hub servers to Windows Server 2012 AD FS Sign-out behavior...
  • Blog Post: New ADFS Content on TechNet Wiki

    Adam Conkle has published some great troubleshooting, tips and tricks and how to articles on TechNet that should help you in evaluating and implementing Active Directory Federation Services. AD FS - How to invoke a WS-Federation sign-out AD FS 2.0 - "An unexpected error has occurred" error or blank...
  • Blog Post: AD FS 2.0 and AD FS 1.x Interoperability

    Hi, it’s Adam Conkle again. I am excited about our recent release of AD FS 2.0 on May 5. I wanted to post a blog about AD FS 2.0 and AD FS 1.x interoperability as soon as possible since I think it will be a common scenario for our customers. AD FS 2.0 and AD FS 1.x interoperability was a priority...