locked
Single ADFS structure with office 365 hybrid RRS feed

  • Question

  • Dear all,

    is it possible we can configure one ADFS server(without DMZ(PROXY) for office 365 hybrid .

    this adfs is using for internal and external access also we have only one public ip address ,

    currently https point to exchange server so i need to 443 forward to ADFS server,

    how we can do that

    kindly assist me for this

    Saturday, July 29, 2017 7:09 PM

All replies

  • Ashru785,

    The external device (firewall) will need to forward 443 request to ADFS not exchange in order to get that to work. Additionally, having one ADFS servers is not a recommended deployment given that if it its unavailable users cant login to O365.

    Short answer, no, you will need two external addresses. 

    All of that being said it based on my experience and deployments. I did conduct some google fu and found this article explaining how to change the listening ports.

    http://www.inogic.com/blog/2014/07/how-to-change-the-port-of-adfs-3-0-windows-server-2012-r2-to-444/

    I stand by my earlier comment, you should have more than one ADFS server, I recommend a full 4 server solution as outlined by Shane Jackson.

    https://gallery.technet.microsoft.com/office365/ADFS-Design-Considerations-f30c0b95

    Good luck, 

    JP

    Saturday, July 29, 2017 10:20 PM