locked
How to Remove ADFS Federation when ADFS server config is gone? RRS feed

  • Question

  • Hello guys,

    I've realized that a made a mistake, and I am seeking your help to get this fixed.

    The context: I am on a LAB virtualized environment, so there is no big impact except a lot of time lost!

    I have a hybrid Exchange 2016/Cloud infra, and I did setup an ADFS Server. Converted my domain, Single Sign On worked like a charm. I then realize i wanted resiliency. Decided to use Windows NLB.

    I found out that the WNLB feature has to be installed before ADFS.

    And here is the mistake: Before removing the roles/features, I didn't revert the changes made at the Office 365 domain level. At the end, I took the VMs out of the domain and decided to build new ones...

    Now I am with my federated O365 domain, with no ADFS at all.

    Is there a way to revert the O365 domain settings back to managed??

    Thanks for your help.

    Tuesday, May 16, 2017 9:04 AM

Answers

  • That command will do the trick:

    Set-MsolDomainAuthentication -DomainName youdomain.com -Authentication Managed.

    Not sure what has to be removed from ADSI Edit tho...

    • Marked as answer by Flo Tougoud Thursday, May 18, 2017 1:46 PM
    Tuesday, May 16, 2017 1:38 PM
  • You can try logging in using you Global Admin account that is on Cloud something like @domainname.onmicrosoft.com from there you can reset ADFS

    https://support.onelogin.com/hc/en-us/articles/203748160-Disabling-ADFS-federation-to-enable-OneLogin-SSO-with-Office-365 

    http://www.concurrency.com/blog/w/turn-off-or-disable-active-directory-federation-se 


    -Arvind Sindhu Enterprise Arch (Microsoft Technologies) Sapient.

    Wednesday, May 17, 2017 7:37 AM

All replies

  • That command will do the trick:

    Set-MsolDomainAuthentication -DomainName youdomain.com -Authentication Managed.

    Not sure what has to be removed from ADSI Edit tho...

    • Marked as answer by Flo Tougoud Thursday, May 18, 2017 1:46 PM
    Tuesday, May 16, 2017 1:38 PM
  • You can try logging in using you Global Admin account that is on Cloud something like @domainname.onmicrosoft.com from there you can reset ADFS

    https://support.onelogin.com/hc/en-us/articles/203748160-Disabling-ADFS-federation-to-enable-OneLogin-SSO-with-Office-365 

    http://www.concurrency.com/blog/w/turn-off-or-disable-active-directory-federation-se 


    -Arvind Sindhu Enterprise Arch (Microsoft Technologies) Sapient.

    Wednesday, May 17, 2017 7:37 AM
  • Flo? Did that help?


    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Thursday, May 18, 2017 1:42 PM
  • Hey,

    Sorry, yes it did. I could just change the domain from federated to managed and it stopped the redirection!

    Thanks a lot

    Thursday, May 18, 2017 1:45 PM