How to Install ADFS on windows server 2012 R2

The ADFS configuration database is used to store all configuration data that represents a single ADFS instance or federation service. ADFS provides for Single Sign-On technology to allow for a user logon to be passed to multiple web applications within a single session and gives you the option to store the data on a Windows Internal Database (WID), or you can utilize Microsoft SQL Server.

The WID database is extremely easy to deploy (WID is included with Windows) and comes with no additional licensing costs. WID also removes the single point of failure in a distributed ADFS environment.

ADFS Topologies

There are a number of different topologies for deploying ADFS, ranging from small and simple to large, complex, and highly redundant.

Federation Server

A federation server serves as part of a federation service that is used to route authentication requests and host a security token service for user accounts between trusted organizations and services.

Federation Server Farm

When you cluster multiple federation servers together to act as one single federation service on the same load-balanced network, that cluster of servers is referred to as a federation server farm.

Federation Server Proxy

A federation server proxy is a federation server that is placed out side the corporate network to provide an intermediary proxy service between your publically inaccessible firewalled corporate network and clients out on the Internet.

This topology is perfectly suitable for an organization that needs to federate with one or more partners and applications but does not have a need for redundancy at the server level.

Load-balanced ADFS servers

When you have multiple federation servers running together, NLB require between them to provide fault tolerance. The NLB can be a piece of hardware such as a multilayer switch or a piece of software such as the built-in NLB functionality with Windows Server.The configuration for ADFS is quite simple. You will simply need to configure Layer4 load balancing of TCP ports 80 and 443.

ADFS Installation 

1. Click on add roles and features option.

install-adfs-1

2. Review the information on the “Before you begin” Click Next.

install-adfs-2

3. Select Role-based or feature-based installation option then Click Next.

install-adfs-3

4.  Select a server from the server pool, and then click Next.

install-adfs-4

5. Select Active Directory Federation Services, and then click Next.

install-adfs-5

6. Select features page, click Next.

install-adfs-6

7. On the Select features page, click Next.

install-adfs-8

8. Click Next

install-adfs-9

9. Read over and select additional role services if needed.

install-adfs-10

10. Review the information on the Confirmation page, Click Install option.

install-adfs-11

11. An installation progress bar will be displayed.

install-adfs-12

12. Reboot the server.

Related Articles: