Federation

%3CLINGO-SUB%20id%3D%22lingo-sub-220089%22%20slang%3D%22en-US%22%3EFederation%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-220089%22%20slang%3D%22en-US%22%3E%3CP%3E%3CFONT%20color%3D%22%23000000%22%20face%3D%22Calibri%22%3EI%20am%20new%20to%20365%20Federation%20and%20am%20feeling%20quite%20dumb%20today.%20I%20have%20set%20up%20a%20test%20domain%20and%20federated%20it%20with%20Azure.%20Everything%20syncs%20fine%20between%20my%20servers%20and%20Azure.%20However%2C%20when%20attempting%20to%20authenticate%20remotely%20to%20Azure%20or%20remotely%20join%20a%20computer%20to%20the%20domain%20I%20get%20a%20cannot%20connect%20error.%20If%20I%20go%20to%20the%20MS%20page%20and%20log%20in%20with%20one%20of%20my%20domain%20users%2C%20the%20login%20redirects%20me%20to%20my%20external%20domain.com%2Fadfs%20page.%20I%20obviously%20am%20missing%20something%20in%20my%20external%20DNS%20but%20cannot%20seem%20to%20find%20any%20info%20on%20where%20to%20point%20it.%3CBR%20%2F%3E%3CBR%20%2F%3EI%20can't%20seem%20to%20find%20any%20info%20on%20where%20to%20point%20adfs.mydomain.com.%3CBR%20%2F%3E%3CBR%20%2F%3EPlease%20see%20the%20attached%20for%20my%20PS%20output%20and%20my%20current%20external%20DNS%20settings.%3C%2FFONT%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-220089%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-220363%22%20slang%3D%22en-US%22%3ERe%3A%20Federation%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-220363%22%20slang%3D%22en-US%22%3E%3CP%3EThere%20are%20multiple%20moving%20parts%20but%20if%20you%20are%20getting%20redirected%20to%20ADFS%20server%20is%20means%20the%20Federation%20on%20'Office'%20365%20is%20working%20but%20there%20might%20be%20issues%20with%20ADFS%20server.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIs%20it%20prompting%20you%20for%20credential%3F%3C%2FP%3E%3CP%3EI%20assume%20it's%20ADFS%203.0%2C%20are%20you%20able%20to%20access%20test%20signon%20page%3F%3C%2FP%3E%3CP%3Ehttps%3A%2F%2F%3CYOUR%20adfs%3D%22%22%20domain%3D%22%22%3E%2Fadfs%2Fls%2FIdpInitiatedSignon.aspx%3C%2FYOUR%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Frequent Visitor

I am new to 365 Federation and am feeling quite dumb today. I have set up a test domain and federated it with Azure. Everything syncs fine between my servers and Azure. However, when attempting to authenticate remotely to Azure or remotely join a computer to the domain I get a cannot connect error. If I go to the MS page and log in with one of my domain users, the login redirects me to my external domain.com/adfs page. I obviously am missing something in my external DNS but cannot seem to find any info on where to point it.

I can't seem to find any info on where to point adfs.mydomain.com.

Please see the attached for my PS output and my current external DNS settings.

1 Reply

There are multiple moving parts but if you are getting redirected to ADFS server is means the Federation on 'Office' 365 is working but there might be issues with ADFS server.

 

Is it prompting you for credential?

I assume it's ADFS 3.0, are you able to access test signon page?

https://<Your ADFS Domain>/adfs/ls/IdpInitiatedSignon.aspx