Setting up ADFS Proxy Servers – Part 2

  1. Export Public Certificate with the private key from ADFS01.contoso.com

    http://technet.microsoft.com/en-us/library/cc754329.aspx

     

  2. Import the Public Certificate on ADFS-PR01 and ADFS-PR02

    http://technet.microsoft.com/en-us/library/cc754489.aspx

     

  3. Bind the Public Certificate (sts.contoso.com) to the Default Website on port 443

     

  4. Click Start -> Administrative Tools -> Internet Information Services (IIS) Manager

     

  5. Expand the server name

     

  6. Expand ‘Site’

     

  7. Select ‘Default Web Site’

     

  8. Click ‘Bindings…’

     

  9. Click ‘Add’

     

  10. Select https and then select the SSL certificate for the STS site. Click ‘OK’

     

Configure the ADFS Proxy Servers

  1. Click Start

     

  2. Click AD FS 2.0 Federation Server Proxy Configuration Wizard

     

  3. Click Next

     

  4. Federation Service Name – This should be prepopulated with sts.contoso.com based on the certificate that we just added.

    If it’s not, make sure that your certificate is correctly exported, imported and bound to https (443) on the default website

     

  5. Click ‘Test Connection’

     

  6. Click Next

     

  7. Enter the service account and password from the ADFS Server install. Click OK

    E.g. contoso\adfs_domain

     

  8. Click Next

     

  9. When you get all Green Checkmarks

     

  10. Close

 

Now that we have the ADFS Proxy Servers setup, we need to load balance the traffic to them. Use Setting up ADFS Servers – Part 4 as a guide to install Windows NLB on the servers and load balance the traffic to the Servers. Keep in mind that it’s key to make sure that the firewall is forwarding traffic from sts.contoso.com over port 443 to the Windows NLB Cluster IP.

The Complete Series of Posts

 

  1. Open Office 365 Account and Sign up for the E Plan Trail
  2. Add and Verify the primary SMTP domain
  3. Setting up ADFS Servers with Windows NLB
    1. Part 1
    2. Part 2
    3. Part 3
    4. Part 4

     

  4. Setting up ADFS Proxy Servers with Windows NLB
    1. Part 1
    2. Part 2

     

  5. Setup Directory Synchronization to Office 365

6.   Force AD Synchronization with Office 365

Thanks for visiting and reading my posts. I am always looking for more ideas. Please comment or email me with what you would like to see.

Kelsey Epps

Office 365 MVP

Email Me Follow me on Twitter Connect with me on LinkedIN Facebook Me

One thought on “Setting up ADFS Proxy Servers – Part 2

  1. Pingback: Haga information

Leave a Reply