Exchange 2013 SP1, Outlook Web App (OWA) and AD FS
It’s over a year now since the last Outlook Web App article about integrating OWA with ADFS. In that post we explored the use of claims-based authentication with OWA in a Proof of Concept using WIF...
View ArticleMFA with Client Certificates in ADFS 2012 R2
There have been questions on this subject posted recently to comments and also on the TechNet forums, so I just wanted to quickly write up something about use of client certificates in the MFA...
View ArticleMFA Conditional Access Policies in AD FS 2012 R2
Hello again. The previous Multi-Factor Authentication (MFA) post on User Certificates provided an opportunity to expand and look at some of the more interesting scenarios for MFA conditional access....
View ArticleInteroperability scenarios with simpleSAMLphp and AD FS
Hello all and Happy New Year! In this post we’ll look at inter-operability scenarios involving simpleSAMLphp and Active Directory Federation Services (AD FS). simpleSAMLphp is a native PHP...
View ArticleAD FS Extranet Lockout: a case of the unintended pun
Just a very quick post, to describe a problem recently experienced at a customer. Extranet Lockout, available in AD FS 2012 R2 and beyond, is a great security function that helps shield the AD password...
View ArticleCustomizing AD FS Relying Parties in Windows Server 2012R2
You may recall a previous post from a few weeks back, concerning customization of AD FS Relying Parties in Windows Server 2016. This functionality is now out-of-the-box in the latest version of AD FS....
View ArticleBack to the Home Realm Discovery in 2012 R2
Hello all. You may recall from older posts on this blog (2012) that we’ve played around in the past with Home Realm Discovery (HRD) in AD FS. First with IWA and forms logon here and then a little bit...
View ArticleAD FS – Old Habits (idpinitiatedsignon.aspx)
Usually after building an AD FS/WAP farm I test locally from the Internet and the Intranet using (to-date) a fairly reliable source of verification that the service is up and running. I’m referring to,...
View Article