Description—When you add an AD FS 2.0 authentication repository for trunk authentication in the Forefront UAG Management console, Forefront UAG automatically creates an AD FS 2.0 application on that trunk and you may receive the following message "An AD FS 2.0 authentication server is used in trunk 'trunk_name'. The authentication server should be associated with an AD FS 2.0 application to provide automatic management of the AD FS 2.0 application. You can associate your current AD FS 2.0 application 'application_name' or you can create a new AD FS 2.0 application. Do you want to associate your current AD FS 2.0 application with the authentication server?"

Cause—If an AD FS 2.0 application exists on the trunk and the host name and path combination of the new AD FS 2.0 application is the same as the existing AD FS 2.0 application host name and path combination, you will receive this error.

Solution—If you associate your current AD FS 2.0 application with the authentication server, Forefront UAG will not create another AD FS 2.0 application and instead will use the current AD FS 2.0 application and will overwrite the application configuration with new settings from the new authentication server. If you do not associate your current AD FS 2.0 application with the authentication server, Forefront UAG will create another AD FS 2.0 application and you will not be able to activate the configuration until you resolve the conflicting host name and path combinations for the AD FS 2.0 applications.