locked
ADFS 4.0: can't view the federationservice.asmx externally RRS feed

  • Question

  • Hi,

    I can view this xml file internally on the same domain (.local) servers, but when I go to different server, I cannot view it:

    https://fedsvc.local/adfs/fs/federationserverservice.asmx

    The error I got when trying to view the xml file is below with external URL https://adfs.abc.com/adfs/fs/federationserverservice.asmx

    The resource cannot be found.
    Description: HTTP 404. The resource you are looking for (or one of its dependencies) could have been removed, had its name changed, or is temporarily unavailable.  Please review the following URL and make sure that it is spelled correctly. 
    
    Requested URL: /adfs/ls/federationserverservice.asmx

    So, before looking into different possible cause(s) of this error, I want to check if the federationserverservice.asmx is supposed to be view-able from outside the domain where it is on, or externally (e.g. from internet).

    Also, since I didn't setup the external DNS and firewall rules between the two different subnets, I am not sure if:

    *** the external URL that I used is pointing to the same page as the internal URL

    I know the external URL/domain IP address, the firewall rule allowed it to talk to the fedsvc IP (which is ViP on internal ADFS load balancers), and two 2 IPs of the two ADFS servers

    I am not using the WAP server, but using NGINx instead.  

    Any idea/suggestion/hint about my current problem, please share.  Thanks so much.

    Monday, December 24, 2018 4:13 PM

All replies

  • one thing I am confirmed, the fedrationserverservice.asmx is accessible from the public facing URL.
    Monday, December 31, 2018 7:13 PM