Part 3 – AD FS Proxy Server Setup

Now that all the required software is installed on the server, we can verify name resolution for the AD FS Server and the AD FS Proxy Server. After that is completed, then we configure the local AD FS Proxy Server.

 

Verify Name Resolution

Since the AD FS Proxy server is not domain joined, it will not have access to the domain based DNS. We need to add some entries to the local hosts file so that the ADFS Proxy Server can resolve the internal IP for sts.domain.com and the AD FS Server.

Domain Based Name Resolution

  1. Login to your Domain Controller

     

  2. Open DNS Management Console

     

  3. Verify A records for the following servers
  • AD FS Server
  • AD FS Proxy Server
  • sts.domain.com (Internal IP)

 

Internet Based Name Resolution

  • Login to your Public DNS Management Console

     

  • Verify and/or Add and A record for the following
    • sts.domain.com (Internet IP)

AD FS Proxy Server Name Resolution

  1. Login to the AD FS Proxy Server with an Administrator Account

     

  2. Open the Start view

     

  3. Type Notepad

     

  4. Right Click Notepad

     

  5. Run as Administrator

     

  6. Click File

     

  7. Click Open

     

  8. Change to All Files

     

  9. Open the hosts file (c:\windows\system32\drivers\etc\hosts)

     

  10. Enter IP and Host name for the AD FS Server and for sts.domain.com

     

  11. Click File

     

  12. Click Save

 

Configure Local AD FS Proxy Server

 

  1. Login to the AD FS Proxy Server with an Administrator Account

     

  2. Open Server Manager

     

  3. Click Tools

     

  4. Click AD FS Federation Server Proxy Configuration Wizard

     

  5. Click Next

     

  6. Verify the Federation Service Name

     

  7. Click Test Connection

     

    This is the message you should see if the firewall is configured properly

     

  8. Click OK

     

  9. Click Next

     

  10. Enter the AD FS Service account information

     

  11. Click OK

     

  12. Click Next

     

    All green checks means a successful configuration

     

  13. Click Close

 

Now that our AD FS server and AD FS Proxy server are setup, we now need to setup Directory Synchronization

Getting to know the NEW Office 365

  1. Does Microsoft have FREE training for the NEW Office 365?
  2. Signing up for the NEW Office 365
  3. Adding and Verifying a Domain for the NEW Office 365
  4. Creating Cloud Users for the NEW Office 365
  5. Configuring Desktops for the NEW Office 365
  6. Exchange 2003 Cutover Migration to the NEW Office 365
  7. Exchange 2007 Cutover Migration to the NEW Office 365
  8. Setting up AD FS and Enabling Single Sign-On to the NEW Office 365
  9. Setting up AD FS Proxy Servers for Single Sign-On to the NEW Office 365
  10. Setting up Directory Synchronization with the NEW Office 365
  11. Activating and Licensing a Synchronized User in the NEW Office 365
  12. Testing Single Sign-on to the NEW Office 365
  13. Making the Single Sign-On Solution Highly Available
  14. Exchange Hybrid Deployment with the NEW Office 365

Thanks for visiting and reading my posts. I am always looking for more ideas. Please comment or email me with what you would like to see.

Kelsey Epps

Office 365 MVP

Email Me Follow me on Twitter Connect with me on LinkedIN Facebook Me

Leave a Reply