ADFS and ADFS Proxy in Windows Server 2012

By: Ashley J Printer Friendly Format    


If you are one of the early adopters of Office 365 and had deployed ADFS for Single Sign On, then probably you had used ADFS 2.0 with Windows 2008. In Windows 2008, ADFS and ADFS Proxy were a dowloadable exe file that you can install it and then configure it. When you configure the ADFS you can either configure it to be an ADFS Server or an ADFS Proxy server. But in Windows Server 2012 all that has changed.

There are no more exe files for you to download and install. Instead, ADFS is included in Windows 2012 as a feature. You just have to add this ADFS feature in your server. Both ADFS and ADFS Proxy services are part of the same feature. So they are not two different features. So in both ADFS Server and ADFS Proxy server you will have to add the same feature.

But the only difference in configuring ADFS vs ADFS Proxy in 2012 is for ADFS Server, after you install the feature and add the default website, you have to goto that ADFS feature and configure it running the ADFS Federation Configuration Wizard. But for ADFS Proxy, you only need to add the ADFS feature and the default website. You should not run the 'ADFS Federation Configuration Wizard'.

Instead,

  1. Open the Windows PowerShell. (Right click the powershell icon on the taskbar and select 'Run as Administrator')
  2. Run this cmdlet: add-adfsproxy
  3. When you run this cmdlet, it will establish trust between this Proxy and your ADFS Server. (Therefore, before you do this, your ADFS Server should be up and running).

I had to search everywhere looking for document on setting up ADFS Proxy server in 2012. Some even said it is not supported. But it was really a simple procedure settingup ADFS and ADFS Proxy server in windows 2012. Therefore, I post this for others who may have similar issues.



Most Viewed Articles (in Office365 )

Change Dirsync synchronization frequency

xxxx cannot be loaded because the execution of scripts is disabled on this system. Please see “get-help about_signing” for more details.

Change primary e-mail address of a Office 365 user or group

Setting up Office 365 in Android phones and tablets

Myths about Directory Synchronization in Office 365

What is Office 365 Small Business Premium?

365 office login (office 365 login)

Making your Alias email as 'Send As' in Office 365

Outlook Live couldn't sign in to the user account on the IMAP messaging system.

An Outlook Live mailbox wasn't found for the user.

The user's mailbox has already been migrated.

Outlook Live couldn't connect to the IMAP server.

The user's Outlook Live mailbox is full.

Steps to Create Shared Mailbox in office 365

Error: "the current user is required to be a builtin\administrator directory sync - Office 365 Directory Sync

Latest Articles (in Office365)

Comment on this tutorial