Active Directory Federation Services on Server 2012 R2 RRS feed

  • Question

  • I have 2 domainss

    Srv1: domain is auc.local (Win Server 2012 R2)
    Srv2: domain is sub.auc.local (Win Server 2008 R2)
    After configure ADFS successful on Srv1, accounts have administrator rights on both domains can sign in https://mydomain/adfs/ls/idpinitiatedsignon.htm
    But domain users on both domains can not sign in

    I added Authenticated Users into Pre-Windows 2000 Compatible Access group
    and added service account into Windows Authorization Access Group

    Domain users on Srv1 can sign in but domain users on Srv2 can not sign in

    Please help me
    Friday, October 18, 2019 11:49 AM

All replies

  • None of these actions are required for ADFS to be able to authenticate users.

    Please provide more details for "users on both domain can not sign in". Is there an error message? Is there a timeout?

    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Friday, October 18, 2019 1:44 PM