TechNet
Products
IT Resources
Downloads
Training
Support
Products
Windows
Windows Server
System Center
Microsoft Edge
Office
Office 365
Exchange Server
SQL Server
SharePoint Products
Skype for Business
See all products »
Resources
Channel 9 Video
Evaluation Center
Learning Resources
Microsoft Tech Companion App
Microsoft Technical Communities
Microsoft Virtual Academy
Script Center
Server and Tools Blogs
TechNet Blogs
TechNet Flash Newsletter
TechNet Gallery
TechNet Library
TechNet Magazine
TechNet Wiki
Windows Sysinternals
Virtual Labs
Solutions
Networking
Cloud and Datacenter
Security
Virtualization
Updates
Service Packs
Security Bulletins
Windows Update
Trials
Windows Server 2016
System Center 2016
Windows 10 Enterprise
SQL Server 2016
See all trials »
Related Sites
Microsoft Download Center
Microsoft Evaluation Center
Drivers
Windows Sysinternals
TechNet Gallery
Training
Expert-led, virtual classes
Training Catalog
Class Locator
Microsoft Virtual Academy
Free Windows Server 2012 courses
Free Windows 8 courses
SQL Server training
Microsoft Official Courses On-Demand
Certifications
Certification overview
Special offers
MCSE Cloud Platform and Infrastructure
MCSE: Mobility
MCSE: Data Management and Analytics
MCSE Productivity
Other resources
Microsoft Events
Exam Replay
Born To Learn blog
Find technical communities in your area
Azure training
Official Practice Tests
Support options
For business
For developers
For IT professionals
For technical support
Support offerings
More support
Microsoft Premier Online
TechNet Forums
MSDN Forums
Security Bulletins & Advisories
Not an IT pro?
Microsoft Customer Support
Microsoft Community Forums
Sign in
Home
Library
Wiki
Learn
Gallery
Downloads
Support
Forums
Blogs
Resources For IT Professionals
United States (English)
Россия (Pусский)
中国(简体中文)
Brasil (Português)
Skip to locale bar
Get this Tag RSS feed
Translate this page
Powered by
Microsoft® Translator
Popular Tags
Active Directory
AD
AD DS
adfs
ASP.NET
azure
BizTalk
BizTalk Server
BizTalk Server 2010
C#
Candidate for deletion
certification
cloud
core docs
de-DE
EAA
Ed Price
Ed's Stub Pages
en-US
ESA
es-ES
Excel
Exchange
Exchange 2010
fa-IR
Fernando Lugao Veltem
FIM
FIM 2010
FIM Resources
FIM-HELP
forefront
forums
fr-FR
Gokan Ozcifci
has code
has comment
has comments
has image
has Images
has Other Languages
has See Also
Has Table
Has TOC
Horizon_Net
How To
Hyper-V
id-ID
IIS
Italian Wiki Articles
it-IT
ja-JP
Jordano Mazzoni
Link Collection
Luciano Lima
Luigi Bruno
Lync Server 2010
MIISILMFIM MACAULAY
Multi Language Wiki Articles
needs work
operations manager
Pirated Content
Portal
Português Brasil
PowerShell
pt-BR
security
SharePoint
SharePoint 2010
SharePoint 2013
SharePoint Pirate
Small Basic
solucionando problemas
SQL Server
SQL Server 2012
stub
System Center
System Center 2012
TechNet Guru
TechNet Wiki
TechNet Wiki Featured Article
tonyso
Translated into Japanese
troubleshooting
tr-TR
vídeo
Video
Virtualization
VMM
Wiki
Windows
Windows 7
Windows 8
Windows Azure
Windows Server
Windows Server 2003
Windows Server 2008
Windows Server 2008 R2
Windows Server 2012
yottun8
اکتیو دایرکتوری
Browse by Tags
>
TechNet Articles
>
All Tags
>
AD FS 2.0
Tagged Content List
Wiki Page:
SharePoint 2007: AD FS 2.0 - "An unexpected error has occurred" Error or Blank Page Displayed Attempting to Log on to SharePoint, Event ID 23 Logged
Gokan Ozcifci
Symptoms You may receive the following error attempting to log on to a SharePoint 2007 site: An unexpected error has occurred. On SharePoint 2010, no error will be displayed and instead you will see a blank page in the browser If you enable AD FS 2.0 tracing, you will see Event ID 23...
on
16 Aug 2013
Wiki Page:
AD FS 2.0: The Service Fails to Start: "The service did not respond to the start or control request in a timely fashion."
Ilantz
Symptoms The AD FS 2.0 Windows service fails to start. This can be observed during Initial Configuration, during a manual restart of the service, or after a system reboot. The System event log indicates a timeout failure similar to the following: Source: Service Control Manager...
on
13 Aug 2013
Wiki Page:
AD FS 2.0: How to Bulk Add Trust Relationships and Claim Rules for Testing
Richard Mueller
Overview Included in this article is a Powershell script sample which allows bulk additions and deletions of test Claims Provider Trusts, Relying Party Trusts, and Claim Rules. These test trust relationships and claim rules may be useful for web testing in a lab environment. Usage Be...
on
13 Aug 2013
Wiki Page:
AD FS 2.x: Troubleshooting Proxy Server Event ID 230 (Congestion Avoidance Algorithm)
Naomi N
Symptoms Client requests that traverse an AD FS 2.x Proxy server intermittently fail The AD FS/Admin Event Log contains event ID 230 showing that the proxy is experiencing congestion Possible Cause 1 The internal AD FS 2.x Federation Server is overloaded with requests Possible...
on
12 Aug 2013
Wiki Page:
ADFS 2.0 High Availability and High Resiliency Walkthrough
Richard Mueller
ADFS 2.0 can be designed with high availability and resiliency to provide authentication service for the applications. Inspired by the MSIT technical case study: Enhancing Federation Services for Internal and External Partners ( http://technet.microsoft.com/en-us/library/ff803566.aspx ). This article...
on
30 Jul 2013
Wiki Page:
Forefront UAG Troubleshooting: Event ID 160: The Authentication Request for the Site Does Not Match the Expected Trunk Name
Patris_70
Symptoms — When end users attempt to access the Forefront UAG portal, they may receive the following message " The trunk name in the received request does not match the expected trunk name. " There may also be an event 160 in the event viewer or in the Web Monitor with the description "...
on
27 Jul 2013
Wiki Page:
AD FS 2.x: How to Tune or Disable Infinite Loop Detection (MSISLoopDetectionCookie)
adamlewis06
AD FS 2.x, by default, writes a cookie to web passive clients named MSISLoopDetectionCookie . This cookie holds a timestamp value and a number of tokens issued value so that AD FS can keep track of how often and how many times a passive client has visited the Federation Service within a specific timespan...
on
25 Jul 2013
Wiki Page:
AD FS 2.0 Content Map
Gayana Bagdasaryan
Subscribe to RSS Feed Share on Facebook Send link to a friend This Active Directory Federation Services (AD FS 2.0) wiki page is intended to act as a content map for all members of the AD FS community . Members of the AD FS product team will occasionally monitor this article...
on
23 Jul 2013
Wiki Page:
AD FS 2.0: Continuously Prompted for Credentials While Using Fiddler Web Debugger
coaxke
Symptoms When using Fiddler Web Debugger to troubleshoot an AD FS 2.0 scenario, you are continuously prompted for credentials by the AD FS 2.0 Federation Server. This prompt comes in the form of a HTTP 401 challenge dialog box. Cause By default, AD FS 2.0 utilizes Extended Protection...
on
10 Jul 2013
Wiki Page:
AD FS 2.0: How to Change the Federation Service Name
Yagmoth555
When AD FS 2.0 is initially configured, the Federation Service Name is determined using the subject of the SSL certificate bound to the Default Web Site in IIS . There may come a time when you need to change to another Federation Service name. The steps needed to accomplish this task are detailed below...
on
8 Jul 2013
Wiki Page:
Active Directory Federation Services (AD FS) Overview
i.biswajith
Active Directory Federation Services (AD FS) makes it possible for local users and federated users to use claims-based single sign-on (SSO) to Web sites and services. You can use AD FS to enable your organization to collaborate securely across Active Directory domains with other external organizations...
on
17 Jun 2013
Wiki Page:
How to Install and Configure ADFS 2.0 for SharePoint 2010 on Windows Server 2008 R2
Gokan Ozcifci
Table of Contents 1 Overview 2 System requirements 3 Additional information 4 Download Center 5 Install ADFS 2.0 on Windows Server 2008R2 ( DC side ) 6 Configure ADFS 2.0 for SharePoint 2010 7 Configure SharePoint 2010 for AD FS 2.0 ( Application Server Side ) 8 Some tests 9 Install ADFS on Windows Server...
on
10 Jun 2013
Wiki Page:
AD FS 2.0: Auto-Populate the Username Field of the Forms Sign-in Page When Signing in to Office 365
CFrancia
When signing in to Office 365 and the " Keep me signed in " checkbox has not previously been checked, an external federated user must type the username two times: Once on the Office 365 sign-in page, and again on the forms-based sign-in page of the AD FS 2.0 Proxy server. Federated users...
on
3 Jun 2013
Wiki Page:
AD FS 2.0: How to Back Up the Federation Service
Adam Conkle - MSFT
Summary The method used to back up a AD FS 2.0 Federation Service differs depending on the deployment option you have: Standalone or Windows Internal Database (WID) Farm - Requires a System State backup of all volumes involved. If you changed the default location of any AD FS 2.0 components...
on
29 May 2013
Wiki Page:
AD FS: How to Obtain Exception Details from the AD FS Error Page
Adam Conkle - MSFT
In AD FS 2.x, debug logging is not enabled by default, and there are specific instructions provided here which step through how to turn on various types of trace messages. However, there may be times where customers are experiencing an AD FS exception, and their web passive client (browser) is...
on
28 May 2013
Wiki Page:
CRM 2011: How to Enable Verbose Windows Identity Foundation (WIF) Tracing for Claims-Based Authentication
Payman Biukaghazadeh
Overview When CRM 2011 is configured for claims-based authentication (CBA), Windows Identity Foundation (WIF) is utilized. When troubleshooting CBA, it may be necessary to gather tracing data from the CRM 2011 server. This article details the steps needed in order to create verbose WIF traces from...
on
26 May 2013
Wiki Page:
AD FS 2.0: Selectively send group membership(s) as a claim
JaredPoeppelman
You can send group membership as claims by using the built in templates Create a new rule, choose “Send LDAP Attributes as Claims” Choose Active Directory as the Attribute Store, and choose the LDAP Attribute “Token-Groups – Unqualified Names” and the claim type as “Group” This will send...
on
22 May 2013
Wiki Page:
AD FS 2.0: How to Set the Primary Federation Server in a WID Farm
Carsten Siemens
Summary When you deploy an Active Directory Federation Services ( AD FS) 2.0 Federation Server farm, you have the option of choosing Windows Internal Database (WID) or SQL to store the configuration information. When you select WID, which is the default in the Initial Configuration Wizard GUI...
on
15 May 2013
Wiki Page:
AD FS 2.0: Migrate Your AD FS Configuration Database to SQL Server
Jorge de Almeida Pinto [MVP-DS]
The AD FS configuration database stores all the configuration data that represents a single instance of AD FS 2.0 (also known as the Federation Service). You can store this configuration data in either a Microsoft SQL Server® database or using the Windows Internal Database. The Windows Internal Database...
on
15 May 2013
Wiki Page:
AD FS 2.0: How to Replace the SSL, Service Communications, Token-Signing, and Token-Decrypting Certificates
Carsten Siemens
Table of Contents Replacing the SSL and Service Communications certificate Replacing the Token-Signing certificate Replacing the Token-Decrypting certificate More Information Were you looking for AD FS 1.x information regarding certificate replacement? Have you recently enabled AutoCertificateRollover...
on
15 May 2013
Wiki Page:
Forefront UAG Troubleshooting: Event ID 152: User Could Not Be Signed Out
Richard Mueller
Symptoms — End users click the Log Off button in the Forefront UAG portal and are logged out of the portal, but an event 152 appears in the event viewer or in the Web Monitor with the description " WS-FAM: User with lead user claim value [user_name] could not be signed out. Session ID [session_ID...
on
14 May 2013
Wiki Page:
SharePoint 2010: How to Install and Configure ADFS for SharePoint 2010 on Windows Server 8
Carsten Siemens
Active Directory Federation Services (AD FS) 2.0 helps simplify access to applications and other systems with an open and interoperable claims-based model. The AD FS 2.0 platform provides a fully redesigned Windows-based Federation Service that supports the WS-Trust, WS-Federation, and Security Assertion...
on
27 Apr 2013
Wiki Page:
AD FS 2.0: "ID4037: The key needed to verify the signature could not be resolved from the following security key identifier"
Fernando Lugão Veltem
Symptoms During a federation passive sign-in request using SAML 2.0 protocol , the request fails and the user lands on the AD FS 2.0 error page The Verbose AD FS 2.0/Admin log shows Error event 303 : Log Name: AD FS 2.0/Admin Source: AD FS 2.0 Date: 9/17/2010 10:54:19 AM Event...
on
25 Apr 2013
Wiki Page:
AD FS 2.0: How to Utilize a Single Relying Party Trust for Multiple Web Applications that Share the Same Identifier
Richard Mueller
A common request we receive from customers is: "I have multiple environments for the same web application. For example, development (DEV), staging (STAGE), and production (PROD). I want to create one Relying Party (RP) Trust in AD FS 2.0 which utilizes a single set of issuance claim rules,...
on
5 Apr 2013
Wiki Page:
AD FS 2.0: Guidance for Selecting and Utilizing a Federation Service Name
Matth CH
Prior to deploying AD FS 2.0, it is essential that a Federation Service Name is selected, and there are some important items to consider before selecting the Federation Service Name. Items for Consideration 1. The Federation Service Name must never equal any machine name in the Active...
on
3 Apr 2013
Page 2 of 5 (102 items)
1
2
3
4
5
Can't find it? Write it!
Post an Article