Home
Join
check
  • UPDATE

    Windows firewall was stopped and disabled on all ADFS and proxy servers, I re-enabled the service with the firewall still being turned off for the profile(s) but it still didn't work.  I then created firewall rules to allow inbound / outbound traffic for the servers, but it still didn't work. 

     

    I then noticed in Certificates within ADFS on the primary server that it was showing the token-decrypting and token-signing as not being trusted, so I installed both of these on the primary server, but still no success.

    I didn't do anything else, but the ADFS proxy servers then started working within about 30 minutes, so not quite sure what actually fixed it, possibly firewall rules just taking time to kick in.

    Was this post helpful? thumb_up thumb_down
  • View Best Answer in replies below

    7 Replies

    • Have you updated the host file on the ADFS Proxy server to resolve your ADFS server correctly?

      Was this post helpful? thumb_up thumb_down
    • Yes I have thanks.  Can ping, and http https to it.  Also tried 3rd party certificates, as well as self signed.

      Was this post helpful? thumb_up thumb_down
    • UPDATE

      Windows firewall was stopped and disabled on all ADFS and proxy servers, I re-enabled the service with the firewall still being turned off for the profile(s) but it still didn't work.  I then created firewall rules to allow inbound / outbound traffic for the servers, but it still didn't work. 

       

      I then noticed in Certificates within ADFS on the primary server that it was showing the token-decrypting and token-signing as not being trusted, so I installed both of these on the primary server, but still no success.

      I didn't do anything else, but the ADFS proxy servers then started working within about 30 minutes, so not quite sure what actually fixed it, possibly firewall rules just taking time to kick in.

      Was this post helpful? thumb_up thumb_down
    • Glad you got it working again

      Pepper graySpice (1) flagReport
      Was this post helpful? thumb_up thumb_down
    • Thanks again for your help Ron

       

      It would have been good to know what actually did fix it, but at least it's working now!

      Was this post helpful? thumb_up thumb_down
    • go to you primary adfs server and in IIS bind the SSL certificate to port 443

      Was this post helpful? thumb_up thumb_down
    • AWESOME!!!! Mine was due to the IIS binding for 443 not having the certificate selected.

      Was this post helpful? thumb_up thumb_down

    Read these next...

    • Simple command to monitor Windows 10 temperature?

      Simple command to monitor Windows 10 temperature?

      Hardware

      I feel like this has probably been address before, although I was wondering if someone is aware of a simple command I can run to report the internal temperature of a Windows 10 PC?I think all computers monitor the temperature, although I've only found thi...

    • Remote access to DVR?

      Remote access to DVR?

      Security

      Hi!I have an older Hikvision DVR that I need to provide remote access to. The users would be mainly accessing it from their smartphones. I tested their software, iVMS, by assigning one of my public IP's to the DVR and it worked fine. However the issue is ...

    • Snap! -- Survival Kits, Forest Bubble on Mars, AI Movie Plots, Leprosy & Livers

      Snap! -- Survival Kits, Forest Bubble on Mars, AI Movie Plots, Leprosy & Livers

      Spiceworks Originals

      Your daily dose of tech news, in brief. Welcome to the Snap! Flashback: Back on December 6, 1907, Mathematical Logician J. Barkley Rosser Born (Read more HERE.) Bonus Flashback: Back on December 6, 1998, International Space Station assemb...

    • Spark! Pro Series - 6 December 2022

      Spark! Pro Series - 6 December 2022

      Spiceworks Originals

      Today in History: 6 December 1240 – Mongols led by Batu Khan occupy and destroy Kyiv after an 8 day siege; out of 50,000 people in the city only 2,000 survive 1849 – Harriet Tubman escapes from slavery in Maryl...

    • The most boring but interesting Phishing Attempt I've seen

      The most boring but interesting Phishing Attempt I've seen

      Security

      Hello There,We've recently had a phishy email come through to one of our employees with an attachment to something work related. But here's the interesting part: The email was spoofed. When checked, the address was that of our own domain, however the emai...