This Test Lab Guide Mini-Module describes how to install Active Directory Federation Services (AD FS) 2.0. You download, install, and run the primary wizards for AD FS 2.0 on the DC1 computer.

Active Directory Federation Services (AD FS) 2.0 helps IT enable users to collaborate across organizational boundaries and easily access applications on-premises and in the cloud, while maintaining application security. Through a claims-based infrastructure, IT can enable a single sign-on experience for end-users to applications without requiring a separate account or password, whether applications are located in partner organizations or hosted in the cloud. For more information about AD FS 2.0 see the AD FS 2.0 Content Map.

If you are running the base configuration test lab in a virtual environment, you can create snapshots of the virtual machines (VMs) for all of the test lab computers before performing the following procedure.

The following procedure installs AD FS 2.0 on the DC1 computer in the Base Configuration test lab. This is done to minimize the number of computers needed in the test lab. In a production environment, you would install AD FS 2.0 on a computer separate from a domain controller. Note that the function of DC1 as an enterprise claims provider is separate from its role as a domain controller.

Installing AD FS 2.0

  1. Go to the Active Directory Federation Services 2.0 RTW web page, and then click Continue.
  2. On the Registration Suggested for This Download page, determine whether you want to register for this download.
  3. From the Proceed to Download page, click Download next to RTW\W2K8R2\amd64\AdfsSetup.exe (the version for Windows Server 2008 R2, which the DC1 computer  runs).
  4. When prompted with the File Download-Security Warning dialog box (Do you want to run or save this file?), click Run.
  5. When prompted with the File Download-Security Warning dialog box (Do you want to run this software?), click Run. The Active Directory Federation Services 2.0 Setup Wizard runs.
  6. On the Welcome to the AD FS 2.0 Setup Wizard page, click Next.
  7. On the End-User License Agreement page, select I accept the terms of the License Agreement, and then click Next.
  8. On the Server Role page, click Federation server, and then click Next.
  9. On the Install Prerequisite Software page, click Next.
  10. On the Completed the AD FS 2.0 Setup Wizard page, click Finish. The AD FS 2.0 management console displays and runs the AD FS 2.0 Federation Server Configuration Wizard.
  11. On the Welcome to the AD FS 2.0 Federation Server Configuration Wizard page, click Create a new Federation Service, and then click Next.
  12. On the Select Stand-Alone or Farm Deployment page, click Stand-alone federation server, and then click Next.
  13. On the Specify the Federation Service Name page, select the certificate named DC1.corp.contoso.com in SSL certificate and Federation Service name, and then click Next.
  14. On the Ready to Apply Settings page, click Next.
  15. On the Configuration Results page, click Close.
  16. Close the AD FS 2.0 management console.

With this new configuration, AD FS is now installed on DC1 and you can use the AD FS management console (click Start, point to Administrative Tools, and then click AD FS 2.0 Management) to configure trusted relying parties, claims provider trusts, and attributes stores in other Test Lab Guides or test lab extensions.

If you are running this test lab in a virtual environment, you can create snapshots of the virtual machines (VMs) for all of the test lab computers to save this configuration.

For additional test lab guide resources, see Test Lab Guides.