DSKOLI

View Original

Configure the federation service on Windows Server 2016 (ADFS 4.0)

Below we may get step-by-step screenshots,

Step 1 - Verify and ensure appropriate IP addresses are assigned to all required fields.

Step 2 - Click on "Start" button.

Step 3 - Click on "Server Manager".

Step 4 - Click on "Local Server".

Step 5 - Click on "WORKGROUP".

Step 6 - Click on "Change...".

Step 7 - Click on "Domain".

Step 8 - Type the domain name and click on "OK".

Step 9 - Enter the Username and Password of an account with permission to join the domain.

Step 10 - Once entered, click on "OK".

Step 11 - Click on "OK".

Step 12 - Click on "OK".

Step 13 - Click on "Close".

Step 14 - Save rest of your background work, if any and click on "Restart Now". If planning to restart after some time then click on "Restart Later".

Step 15 - Click on "Add roles and features".

Step 16 - Click on "Next".

Step 17 - Keep selected "Role-based or feature-based installation" and click on "Next".

Step 18 - Select/Verify the server name and IP address, then click on "Next".

Step 19 - Locate "Active Directory Federation Services" and click the check box.

Step 20 - Confirm the Tick mark and click on "Next".

Step 21 - Click on "Next".

Step 22 - Click on "Next".

Step 23 - Click on "Install".

Step 24 - Wait for some time until installation completes.

Step 25 - Click on "Configure the federation service on this server.".

Step 26 - Keep selected "Create the first federation server in a federation server farm" and click on "Next".

Step 27 - Click on "Next".

Step 28 - Import "SSL Certificate" from the stored location, edit "Federation Service Name" if wildcard certificate selected and type "Federation Service Display Name".

Step 29 - Click on "Next".

Step 30 - Click on "Select..." to use an existing domain user account or group Managed Service Account.

Step 31 - Click on "Next".

Step 32 - If not using SQL Server database then keep selected "Create a database on this server using Windows Internal Database." and click on "Next".

Step 33 - Review all selections and click on "Next".

Step 34 - Click on "Configure".

Step 35 - Wait for some time until wizard completes validation of SSL certificate.

Step 36 - Wait for some time until installation and configuration completes.

Step 37 - Click on "Close".

Step 38 - On the local DNS Server, add "Host (A)" record for federation service name pointing to ADFS server. For example, "sso.dskoli.work" pointing to internal IP "192.168.1.102".

Step 39 - Test setup referring https://blogs.technet.microsoft.com/rmilne/2017/06/20/how-to-enable-idpinitiatedsignon-page-in-ad-fs-2016/

See this donate button in the original post