Monthly Archives: December 2015

New WID support limit in AD FS

Excellent news!  The number of supported federation service (FS) servers in a farm with a Windows Internal Database (WID) backend has increased from 5/10 to 30: A WID farm has a limit of 30 federation servers if you have 100 … Continue reading

Posted in AD FS, Uncategorized | Tagged , , , , , , | 4 Comments

AD FS, Enhanced Protection for Authentication (EPA), Chrome and Integrated Windows Authentication (IWA)

Something that I’ve had the misfortune of working on to look into recently was the user experience when accessing federated business apps using a browser that isn’t Internet Explorer.  Suffice to say, my customer has “two” supported browsers: IE (9, … Continue reading

Posted in AD FS, Uncategorized | Tagged , , , , , , , , , , | 5 Comments

Configuring SAML sign-out in Active Directory Federation Services (AD FS)

Consider this scenario: you have a SAML2P Software-as-a-Service (SaaS) application, for example Salesforce.com Chatter, configured for Single Sign On (SSO) with Active Directory Federation Services.  This means that your SaaS app is a relying party (RP), or service provider (SP), … Continue reading

Posted in AD FS, Troubleshooting | Tagged , , , , , , | 4 Comments

Hello world (a.k.a. First post in quite some time)

This blog has been pretty quiet here for several months.  I’ve been very busy.  I’ve had a considerable workload and the technologies and timelines I’ve been dealing with have not provided me ample time to sit down and reflect or … Continue reading

Posted in Uncategorized | Leave a comment