Hey y’all Mark and Tom here. Thinks are starting to return to normal so hopefully we should be back to a regular posting schedule. Tom should have some more time since HIS hockey team is already out of the playoffs while mine continues to march on. This mailbag is chalked full of ADFS goodness. Let’s get into it.
We have several RPs that are set to automatically monitor and update the relying party metadata. How often does this refresh occur and how can I check that it was checked?
It should be refreshing every 24 hours. To validate that you’ll need to use the following PowerShell command to Get-AdfsRelyingPartyTrust –Name “<your relying party trust name>”. Here is an example of my O365 RP.
You can see the LastMonitoredTime of the RP.
Some of my workplace join devices are expiring after 30 days of inactive use. My environment requires me to make this longer, such as 90 days. Can you do this?