Configure the AD FS Servers with Azure Load Balanced Set in Windows Azure for Office365 Single Sign-On

 

Assumptions:

  • Azure account is setup
  • Directory Sync is activated, setup and running
  • VPN connection setup from Azure to your on-premise network
  • Primary and Secondary AD FS servers are setup (see previous posts in this series)
  • WAP servers are deployed on a differnet network than the ADFS Servers. If you are unsure, see this BLOG post.

 

Reference this TechNet Article – http://msdn.microsoft.com/en-us/library/azure/dn655055.aspx

 

 

Creating the Load Balanced Set on the Primary ADFS Server

 

Open Azure Management Portal

Click Virtual Machines

Click the Primary AD FS Server

Click Endpoints Tab

 

Click Add (+)

Select Add a Stand-alone Endpoint

Click Next

 

Configure as follows:

Name – HTTPS

Protocol – TCP

Public Port – 443

Private Port – 443

 

Select Create a Load-Balanced Set

Click Next

 

Configure as follows:

Load-Balanced Set Name – ADFS_SSL

Probe Protocol – TCP

Probe Port – 443

Probe Internal – 15

Number of Probes – 2

 

Click the complete check mark

 

The load balanced set is created

 

 

Adding the Second ADFS Server to the Load Balanced Set

 

Click the Primary AD FS Server

Click Endpoints Tab

 

Click Add (+)

Select Add an Endpoint to an Existing Load Balanced Set

Select ADFS_SSL or whatever you called it

Click Next

 

Enter Name – ADFS_SSL

Click the complete checkmark

 

The end point will be re-configured to load balance across the two ADFS servers.

 

At this point ADFS have now been load balanced. If you have more than two ADFS servers, keep adding them to the load balanced endpoint.

 

My BLOG Series

Deploying a Highly Available AD FS 3.0 Solution in Windows Azure for Single Sign-on with Office365

  1. Setting up the Primary AD FS 3.0 Server in Windows Azure for Office365 Single Sign-On
  2. Setting up the Secondary AD FS 3.0 Server in Windows Azure for Office365 Single Sign-On
    1. Configure the AD FS Servers in an Internal Load-Balanced Set in Windows Azure for Office365 Single Sign-On
    2. Configure the AD FS Servers with Azure Load Balanced Set in Windows Azure for Office365 Single Sign-On
  3. Securing the AD FS 3.0 servers and Configuring Azure ACLs for WAP Communications
  4. Setting up the First Web Application Proxy Servers (AD FS Proxy) in Windows Azure for Office365 Single Sign-On
  5. Setting up the Second Web Application Proxy Server (AD FS Proxy) in Windows Azure for Office365 Single Sign-On
  6. Configure Endpoints and Test the Web Application Proxy Servers (Load-Balanced Set in Windows Azure) for Office365 Single Sign-On

Thanks for visiting and reading my posts. I am always looking for more ideas. Please comment or email me with what you would like to see.

Kelsey Epps Office365 MVP

Technical Consultant

Concepps Group

Email Me Follow me on Twitter Connect with me on LinkedIN

Leave a Reply