Tag: ADFS

  • Azure Virtual Desktop Sign-in without access to ADFS
    ,

    Azure Virtual Desktop Sign-in without access to ADFS

    Azure Virtual Desktop supports Azure AD Join and the option to enable Single Sign-On, when starting a remote session to a desktop or application. This would usually require access to ADFS when your users domain is federated with ADFS. But did you know this works without AVD having access to ADFS? The Case AVD is […]

    Read more
  • Why does ADFS, WIA and Kerbeos work togethere?

    Google search for ADFS and Kerberos, will tell you ADFS uses Kerberos Constrained Delegation, in order to validate your credentials, so there is kerberos authentication between ADFS and your Domain Controllers. Windows Integrated Authentication (WIA) or true SSO, is when you sign-in without entering your credentials. But why does it only work from inside your local […]

    Read more
  • Howto configure Password Change in ADFS

    Howto configure Password Change in ADFS

    Users are always allowed or forced to change their passwords, either by a phone call to servicedesk or from their domain joined computer when at the Office. By enabling this feature in ADFS, you make self-service password change more available for your end-users. Possible reducing the incoming calls to Servicedesk. Password change is protected by requiring the user to remember its existing […]

    Read more
  • Important Update for ADFS 3.0

    Important Update for ADFS 3.0

    A backdoor was found when a browser session wasn’t closed, even if we have logged out from the Federated Service, so Microsoft released a secuity update for Our Windows 2012 R2 (MS15-040). Also for a Core installation, as this hits the ADFS Service. It could make it possible for information disclosure, by reopening the Federated Service and […]

    Read more
  • ADFS supporting Chrome

    ADFS supporting Chrome

    Doesn’t everyone use Internet Explorer? Isn’t it Company policy anymore? ADFS doesn’t support Chrome out of the Box, so we need to adjust some settings for Chrome to use ADFS. Depending on which Version Your using, there are two settings to help Your Chrome users out. ADFS 2.0/2.1 (Windows Server 2008/2012) ADFS comes standard With […]

    Read more
  • AAD Premium for custom Sign-In Page branding

    AAD Premium for custom Sign-In Page branding

    Lets look at the options we have for customizing Our Sign-In Page towards Microsoft Online Services, which will work very much the same as when having Federated Your users With ADFS 3.0. I assume you have bought or started a trial of Azure AD Premium Licenses, and assigned them to the Lucky users. Now open […]

    Read more
  • Azure AD Connect automates ADFS Installation and Setup

    Azure AD Connect automates ADFS Installation and Setup

    Azure AD Connect retires Azure AD Sync and DirSync, so Azure AD Connect have been in Beta and is now in Public Preview. Allthough the download link seem to be dead (Page not found). I want to point out a New feature, which is a wizard Automatic installation and setup of SSO (ADFS 3.0/WAP) With […]

    Read more
  • Office 2013 updated authentication with Office 365

    Office 2013 updated authentication with Office 365

    Very welcome Security update for Office 2013 authentication With Office 365 Services. The Whole noboddy liked to talk about has been closed. The update will only come to Office 2013, so for those running Office 2010 the enhanced Security will not be available until you Upgrade to Office 2013. Outlook 2013 Outlook 2013 used basic authentication […]

    Read more
  • Update: From ADFS to DirSync Password Hash Sync

    Update: From ADFS to DirSync Password Hash Sync

    Whats new and how is it made better? Password Hash Sync can now be failover solution for Federated vanity domains. Now that Azure Active Directory have been updated, so Federated users can have a password even if they are Federated. This means that when we follow Our guide From ADFS to Dirsync Password Sync we […]

    Read more
  • ADFS, WID or SQL?

    ADFS, WID or SQL?

    Are you using Windows Internal Database or SQL Server? So I had this project for a customer lately, and everything was working as inteded until I was expanding the ADFS Farm with a second ADFS Server. It continuely told me I couldn’t add the Server to the ADFS Farm, because I was using a SQL […]

    Read more

Ehlo!

I am Roy Apalnes, a Microsoft Cloud Evangelist working av Sopra Steria. Main focus in Microsoft Security and Endpoint Management, with a bigger picture in mind.

Featured Posts