Microsoft opened the public preview for the new cross-tenant synchronization, which enables automatic provisioning and lifecycle management of user accounts across tenants. This function simplifies a number of the previous challenges for multi-tenant organizations that need close collaboration between employees with easy sharing of both data and applications across tenants. This new feature expands the… Read More »
Recently I encountered a Web Application Proxy (WAP) server that was stuck in a failed state after changes to the ADFS backend service. In the Remote Access crimson log on the WAP server, an event 422 error appeared once every minute, showing that the WAP server could not retrieve proxy configuration from the ADFS backend… Read More »
I have have worked on a case where external access to the ADFS service was blocked and the Remote Access Management console on the WAP server fails with this error: Web Application Proxy could not connect to the AD FS configuration storage and could not load the configuration. Make sure that the Web Application… Read More »
A new February 9, 2016 update resolves a vulnerability in Active Directory Federation Services (ADFS). If an attacker successfully exploits this vulnerability, by sending certain input during forms-based authentication to an ADFS server, this can cause the server to become nonresponsive. The new update addresses the vulnerability by adding additional checks on input data during… Read More »
The 2015 December version of Azure AD Connect has just been released. The new release includes a few, but critical fixes, including a fix for an issue with password sync, that several organizations have been struggling with lately. Fixed issues: Password sync might not work when you change passwords in AD DS, but works when… Read More »
The Web Application Proxy (WAP) is a role service of the Remote Access server role in Windows Server 2012 R2. One of the primary roles of the WAP is to performs pre-authenticates access to web applications using Active Directory Federation Services (AD FS), and in this capacity the WAP functions as an AD FS proxy.… Read More »