none
Deleted RRS feed

All replies

  • Hi,

    With Server 2016, user may get a lot of these 304, 307 errors in the event log.

    This is caused by a task called Automatic-Device-Join which runs as a scheduled task whenever someone logs into a server (terminal server). This can cause a lot of events on the system. Disable this task. This is used for Azure AD device joins.

    If your devices have joined AAD but do not have a WS-trust endpoint enabled, you will see a error (event ID 304) in the ADFS logs.

    To enable the "/adfs/services/trust/13/windowstransport" endpoint for ADFS, execute on the (primary) ADFS server:

    Enable-AdfsEndpoint -TargetAddressPath "/adfs/services/trust/13/windowstransport"

    To enable the "/adfs/services/trust/2005/windowstransport" endpoint for ADFS, execute on the (primary) ADFS server:

    Enable-AdfsEndpoint -TargetAddressPath "/adfs/services/trust/2005/windowstransport"

    (2016-12-16) Automatic Azure AD Join With ADFS v3.0 And Higher And Conditional Access – What You Really Need In Detail

    https://jorgequestforknowledge.wordpress.com/2016/12/16/automatic-azure-ad-join-with-adfs-v3-0-and-higher-and-conditional-access-what-you-really-need-in-detail/

    Please Note: Since the website is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.

    Regards


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Tuesday, September 19, 2017 1:32 AM
    Moderator