Tag Archives: Layer-8

Azure Multi-Factor Authentication Server portal looping layer-8 issue

I’ve recently designed and implemented a large hybrid identity provider that comprises Azure Active Directory Premium, Active Directory Federation Services and Azure Multi-Factor Authentication Server.  One of the things I did was utilise Internet Information Services (IIS) URL rewrite rules … Continue reading

Posted in Azure MFA | Tagged , , , , | 2 Comments

Configuring SAML sign-out in Active Directory Federation Services (AD FS)

Consider this scenario: you have a SAML2P Software-as-a-Service (SaaS) application, for example Salesforce.com Chatter, configured for Single Sign On (SSO) with Active Directory Federation Services.  This means that your SaaS app is a relying party (RP), or service provider (SP), … Continue reading

Posted in AD FS, Troubleshooting | Tagged , , , , , , | 4 Comments

ExternalAuthenticationHandler.Process() exception: System.Net.WebException: The request failed with HTTP status 405: Method Not Allowed

It’s turning into a month of school-boy/layer-8 issues.  Evidently I need to slow down!  Scenario You are integrating Windows Server 2012 R2 Active Directory Federation Services (AD FS), a.k.a. AD FS 3.0, with an on-premises Azure Multi-Factor Authentication (MFA) Server.  … Continue reading

Posted in AD FS, Azure, Azure MFA | Tagged , , , , , , , , , , , | Leave a comment

RPC Error 8453 Replication access was denied in Azure AD Sync Services #AADSync

Quick post to describe a common layer-8 issue. You’ve installed Azure AD Sync Services (AADSync) 1.0.0470.1023 (or later) and have setup password hash synchronisation, i.e. you are synchronising users and their passwords as opposed to creating federated users. Password synchronisation … Continue reading

Posted in AADSync, Troubleshooting | Tagged , , , , , | 14 Comments

Seriously off topic: creating a semi-circle in Visio 2010

I wanted to depict the CS and MV as two halves of a circle (coloured differently) and I really couldn’t work out how to do it.  I found reference to the Fragment command but that is nowhere to be seen … Continue reading

Posted in Off-topic | Tagged , , , , , | 18 Comments

Failed to connect to the specified database or Forefront Identity Management Service #1

I was testing a configuration migration in a customer environment and, when importing the FIM MA, I hit the good old error: Failed to connect to the specified database or Forefront Identity Management Service. Please check the specified database location, … Continue reading

Posted in FIM, FIM 2010, Troubleshooting | Tagged , , , , , , , , | 8 Comments

SQL Server aliases

(a.k.a. Honestly…My top Layer-8 issue of 2010) SQL Server aliases: they need to be created on all clients that use them, not just the SQL Server! How do we create them?  Two primary ways: CLICONFG.EXE (%systemroot%\system32\cliconfg).  Native to Windows, the … Continue reading

Posted in Scripting, SQL Server | Tagged , , , , , , , , , , | 4 Comments