Join Log in
Score:0
Oleksii avatar Server

ADFS as proxy to some IDP

cd flag
Oleksii

As far as I know, Exchange does support WS-Federation, but it does not support SAML. At the same time I have IDP that does support SAML, but does not support WS-Federation.

Is it possible to configure ADFS as proxy? For example: Exchange OWA/ECP -> redirect to ADFS using WS-Fed -> and ADFS speaks to IDP using SAML -> user is getting transparently authenticated using IDP?

Thank in advance.

110
0 + 0
Score:0
Joy Zhang avatar Server
us flag
Joy Zhang

Here are some information for your reference and hope these are helpful to you: Redirecting on-premise Exchange Server 2019 OWA and ECP authentication to AD FS and Use AD FS claims-based authentication with Outlook on the web

0 + 0
Oleksii avatar
cd flag
Oleksii
Thank you. I have read a bit about adding Claims Provider Trust. In Windows 2019 that I'm using I do not see option to specify SAML endpoint, like I could see at the screenshots of the previous versions. Even on the official documentation if one goes to step 'Configure URL' on the page below it displays only an option for WS-Federation endpoint ( https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/operations/create-a-claims-provider-trust
0
Reply
Score:0
avatar Server
pr flag
rbrayb

Yes, it's possible to mix protocols.

By default, the user would be redirected to the ADFS screen and there would be a button there (Home Realm Discovery) that would take you to the SAML IDP to authenticate.

Depending on your use case, this may help in that regard.

0 + 0
Oleksii avatar
cd flag
Oleksii
Thank you. I have read a bit about adding Claims Provider Trust. In Windows 2019 that I'm using I do not see option to specify SAML endpoint, like I could see at the screenshots of the previous versions. Even on the official documentation if one goes to step 'Configure URL' on the page below it displays only an option for WS-Federation endpoint ( https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/operations/create-a-claims-provider-trust
0
Reply
pr flag
rbrayb
https://docs.microsoft.com/en-us/powerapps/maker/portals/configure/configure-saml2-settings#configure-ad-fs-by-using-powershell
0
Reply
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.