none
ADFS WID Database limitation RRS feed

  • Question

  • Hello,

    In our ADFS 3.0 infrastructure we have 101 relying party trusts connected. We still have a WID Database, I know that WID has a limitation of 100 relying party trusts, after you have to configure a SQL Server...

    The problem is that WID Database are automatically replicated between different ADFS server on different sites, for SQL Server we will have to configure SQL mirroring of something like that between different sites.

    If we just have 100 - 105 relying party trusts in our ADFS farm, is a SQL Server mandatory? What are the problems expected?

    Any shared exprience will be appreciate.

    Thank you,
    Pwnny

    Monday, January 18, 2016 9:41 AM

Answers

  • So they updated the documentation (again...). So more than 100 RP trusts = Not supported using WID and SQL is required.

    1 - 100 RP Trusts

    More than 100 RP Trusts

    1 - 30 AD FS Nodes

    WID Supported

    Not supported using WID - SQL Required

    More than 30 AD FS Nodes

    Not supported using WID - SQL Required

    Not supported using WID - SQL Required


    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Sunday, February 7, 2016 12:56 AM
    Owner
  • Hi Pwnny,

    I suspect ADFS will not break with 102 RP trust and WID.  However, an unsupported configuration may cause you difficulties if you have to log a support ticket with Microsoft


    __________________________________________

    Please mark as Answer if this answers your question

    Regards,

    Shane Jackson

    Blog: https://shanejacksonitpro.wordpress.com/

    Twitter: https://twitter.com/shane00jackson

    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Tuesday, February 9, 2016 1:38 PM

All replies

  • Hi Pwnny

    See this link

    Extract:

    What are the limitations of using this topology?


    • A WID farm has a limit of 30 federation servers if you have 100 or fewer relying party trusts. If you have more than 100 relying party trusts, a WID farm has a limit of 5 federation servers.

    SQL is not mandatory, but you are limited to 5 federation servers in the WID farm


    __________________________________________

    Please mark as Answer if this answers your question

    Regards,

    Shane Jackson

    Blog: https://shanejacksonitpro.wordpress.com/

    Twitter: https://twitter.com/shane00jackson

    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Thursday, February 4, 2016 5:00 PM
  • So they updated the documentation (again...). So more than 100 RP trusts = Not supported using WID and SQL is required.

    1 - 100 RP Trusts

    More than 100 RP Trusts

    1 - 30 AD FS Nodes

    WID Supported

    Not supported using WID - SQL Required

    More than 30 AD FS Nodes

    Not supported using WID - SQL Required

    Not supported using WID - SQL Required


    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Sunday, February 7, 2016 12:56 AM
    Owner
  • Hi Pierre and Shane,

    Thank you, unfortunately old limitations was pretty cool..  I saw those new limitations too.
    I was really interested in the consequence of this (for instance if you have 102 RP Trusts..).

    Have a nice day,
    Pwnny

    Tuesday, February 9, 2016 10:48 AM
  • Hi Pwnny,

    I suspect ADFS will not break with 102 RP trust and WID.  However, an unsupported configuration may cause you difficulties if you have to log a support ticket with Microsoft


    __________________________________________

    Please mark as Answer if this answers your question

    Regards,

    Shane Jackson

    Blog: https://shanejacksonitpro.wordpress.com/

    Twitter: https://twitter.com/shane00jackson

    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Tuesday, February 9, 2016 1:38 PM
  • HI Shane,

    I think you're certainly right about a support ticket with MS.
    We should consider an upgrade. Thank you.

    Regards,
    Pwnny

    Wednesday, February 10, 2016 12:43 PM