ADFS: Installation and Configuration

In this article, I propose to discover the AD FS and Proxy (WAP) roles. As part of the preparation for the 70-742 certification, I embarked on the mock-up of an infra.

What’s this ?

ADFS and the proxy that accompanies it can put several things in place:

  • An SSO system (for compatible applications) that allows single sign-on
  • Security by managing authentication before application
  • Cross-domain trust through ADFS proxy communication (different from domain trust within the active directory).

Prerequisites

For the realization of this tutorial here are the machines used:

  • LAB-AD1 : AD / DHCP / DNS / IIS
  • LAB-ADFS : ADFS
  • LAB-ADFS-PROXY : Proxy WAP (normally to be placed in DMZ)
  • A client
  • Generate a certificate for HTTPS binding with ADFS services (fs.lab.intra) and install it on the ADFS server in the personal store.
  • Generate a certificate for the HTTPS link for the test site (* .lab.intra) and install it on the IIS server in the personal store.

I used the AD1 server to have a test web page. On the client to run the federation url must point to the proxy.



Related Posts


GPO: Managing Windows Firewall Rules

Presentation In this tutorial, we will see how to add rules to the Windows Firewall using Group Policy. For information, the Windows Firewall has been implemented in the Windows operating system with

Active Directory Right Management Services: Installation and Configuration

AD RMS (Active Directory Right Management) is a Windows Server service that provides extended rights management for certain files. The system is similar to the DRM protection that protects intellectua

Windows Backup: installation and configuration

Presentation Windows Server includes a feature (Windows Backup) that allows you to perform full system backups or a portion of it. It can be used to back up virtual machines, SQL Server databases, fil