locked
How to implement least privilege for administering ADFS 2016 RRS feed

  • Question

  • Is there any info on how to delegate adfs administration tasks?

    In this forum thread Pierre Audonnet states about ADFS 2016 "It also offer the possibility to delegate the administration of the service to a specific group ( so you could administrate the ADFS server without being a member of the local Administrators group any more)."  I have not been able to find any information on how to do this.

    I would like to allow a user to run these adfs cmdlets via remote powershell but don't necessarily want that user to be a local admin on the adfs server.:

    Get-AdfsApplicationGroup

    New-AdfsApplicationGroup

    Add-AdfsServerApplication

    Add-AdfsWebApiApplication

    Grant-AdfsApplicationPermission

    Wednesday, May 23, 2018 5:53 PM

Answers

All replies