none
ADFS Single Sign ON needs to be implemented between two branch offices.

    Question

  • Hi All,

    We are planning to implement Single Sing on for our two branch offices.

    Main Branch: 

    1) Active Directory with 2012 R2.   

    2) Around 40 Users

    Branch Office:

    1) Read Only Domain Controller 

    2) Around 10 Users

    Implementation Plan:

    1) Going to add ADFS Server with 2016 STD at Main Branch.

    2) Taking a SSL certitificate.

    Please let me know whether we need any additional software/hardware to configure SSO in our environment.

    With Regards,

    Ram.

     

    Friday, May 18, 2018 11:45 AM

All replies

  • What is this Single Sign On used for..? The Description you have stated doesn't exactly defines the usage of ADFS
    Tuesday, May 22, 2018 7:19 AM
  • Dear SL-AD Admin,

    We wish to allow all of our users to login to the applications and emails which we are using, with the domain login itself, rather than maintaining different passwords for different apps.

    Using Office 365 for our emails.

    Regards,

    Ram.

    Tuesday, May 22, 2018 10:40 AM
  • Depending on your Infra Configuration of the ADFS you may need SQL in the backend, provided you estimate that your ADFS usage is going to be high and the number of RP trusts more than 100. By the looks of it, this is a small configuration in which case you may stick with WID, you might want to take a look into the fault tolerance methods of your ADFS Farm.

    Take a look at the deployment guide:

    https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/ad-fs-deployment

    Friday, May 25, 2018 11:07 AM
  • You missed out site 2 site / IP sec tunneling setup on both UTM or firewall device.

    Guowen Su
    Cisco Certified Network Associate
    Cisco Certified Internetwork professional - MPLS
    Certified Information Systems Security Professional
    Microsoft Partner Network 2011
    Microsoft Certified Professional
    Microsoft Certified Systems Administrator:Security
    Microsoft Certified Systems Engineer: Security
    Microsoft Certified Technology Specialist: Windows Server 2008 Active Directory, Configuration
    Microsoft Certified Technology Specialist: Windows Server 2008 Network Infrastructure, Configuration
    Microsoft Certified Technology Specialist: Windows Server 2008 Applications Infrastructure, Configuration
    Microsoft Certified Technology Specialist: Windows 7, Configuring
    Microsoft Certified IT Professional: Enterprise Administrator
    Microsoft Certified IT Professional: Server Administrator
    Certified Ethical Hacker
    Computer Hacking Forensics Investigator
    Certified Sonicwall Security Administrator
    Microsoft Geeks

    Thursday, May 31, 2018 3:34 AM