locked
ADFS 4.0 RRS feed

  • Question

  • Hi Guys,

    I have ADFS 4.0 version in place and working fine, one my vendor are planning to upgrade application TLS to 1.1 to 1.2.

    Will this cause anything on SSO.

    Thanks in advance.

    Thursday, January 23, 2020 8:19 PM

Answers

  • ADFS does not talk to the applications. So generally this is not impacting ADFS. That said ADFS can be configured to request for the application metadata peridocally to check if things have changed (update the signing certificate, the endpoints, etc...). This might fails if the application is using only TLS 1.2 as .Net applications (ADFS is one of them) is not configured to use strong crypto. You can change it, it is documented here: https://docs.microsoft.com/en-us/dotnet/framework/network-programming/tls.

    If you do not have such application monitoring enabled in ADFS, there is no impact.


    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Friday, January 24, 2020 1:06 AM