locked
what is difference between ADFS and Web proxy RRS feed

  • Question

  • Hi i want to know what is difference between ADFS and Web proxy for Microsoft Enterprise mobility suite scenario i am looking difference between ADFS and Web proxy and implementation setps for both
    Tuesday, August 2, 2016 3:11 PM

Answers

  • It is required if you are following best practice. It is not technically required in order to get ADFS to work.

    The main take away it that you should proxy ADFS using some kind of device to the Internet, to prevent exposing ADFS straight online.

    http://blog.ryanbetts.co.uk

    • Proposed as answer by Alvwan Monday, August 8, 2016 2:22 AM
    • Marked as answer by Alvwan Monday, August 15, 2016 9:11 AM
    Sunday, August 7, 2016 11:54 AM

All replies

  • Hi,

    Thanks for your post.

    Web Application Proxy is a new Remote Access role service in Windows Server® 2012 R2. Web Application Proxy provides reverse proxy functionality for web applications inside your corporate network to allow users on any device to access them from outside the corporate network. Web Application Proxy preauthenticates access to web applications using Active Directory Federation Services (AD FS), and also functions as an AD FS proxy.

    Please go through the following article to get more information:

    Working with Web Application Proxy

    https://technet.microsoft.com/en-us/library/dn584113(v=ws.11).aspx

    Best Regards,

    Alvin Wang


    Please remember to mark the replies as an answers if they help and unmark them if they provide no help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Wednesday, August 3, 2016 6:15 AM
  • Excellent so web application proxy requires ADFS it won't work independently? just it is one more authentication security layer? so need not to implement web application proxy i mean if any advantages of web application proxy?
    Wednesday, August 3, 2016 4:21 PM
  • The Web Application Proxy is just a reverse proxy server role in Windows Server, that happens to work with ADFS. You don't actually have to use the WAP server with ADFS, you can use other devices like Citrix NetScalers to reverse proxy the service, alternatively you can NAT your ADFS farm straight to the Internet (not recommended). 

    One thing to bare in mind if your deploying the WAP servers, you can publish other web application using it along with ADFS.

    http://blog.ryanbetts.co.uk

    Friday, August 5, 2016 3:02 AM
  • Thanks so web application proxy is required for ADFS? it is mandatory to implement Web application proxy for ADFS? my question web application is manadtaory for ADFS and what is advantage of using Web application proxy
    Saturday, August 6, 2016 8:57 AM
  • It is required if you are following best practice. It is not technically required in order to get ADFS to work.

    The main take away it that you should proxy ADFS using some kind of device to the Internet, to prevent exposing ADFS straight online.

    http://blog.ryanbetts.co.uk

    • Proposed as answer by Alvwan Monday, August 8, 2016 2:22 AM
    • Marked as answer by Alvwan Monday, August 15, 2016 9:11 AM
    Sunday, August 7, 2016 11:54 AM