ADFS 4.0 Authenticaiton Methods RRS feed

  • Question

  • Hi,

    Is there an easy way to force Forms-Based Authentication for Intranet users on one relying party? Right now, I have both FBA and IWA boxes checked in Primary Authentication Methods for Intranet.

    I know that in ADFS 3.0 there was an easy way to achieve this by setting a custom authentication policy per relying party. How can I achieve the same thing in Server 2016 ADFS 4.0?

    Thursday, November 7, 2019 8:08 PM


  • You cannot do that neither on ADFS 4 nor in ADFS 3.

    The authentication policy applies for all RPs.

    That said, you can configure an application to specifically request for an authentication method. So ask the dev or the software provider to do so. Also, FBA is the weakest way to do authentication, so at the end of the day, it migh not be a great idea to force it.

    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

    Thursday, November 7, 2019 9:46 PM