Archive for the 'Hybrid Identity' Category

Topologies for Azure AD Connect (AADConnect)

Let me cross-link this here, because I feel like this is one of the better, clearer articles of what you can and should not attempt to build with Azure AD Connect (AADConnect): https://azure.microsoft.com/en-us/documentation/articles/active-directory-aadconnect-topologies/ It outlines nicely what scenarios and topologies are supported in the current version of AADConnect.

Read More..>>

ADFS Capacity Planning Spreadsheet updated for Windows Server 2016

Good news! The ADFS Capacity Planning Spreadsheet most of us are familiar with, has been updated to reflect Windows Server 2016 numbers and scaling. While the “old” spreadsheet was still “OK” for Windows Server 2012 R2, apparently there are a number of changes in Windows Server 2016′s ADFS that warranted for an updated version. Nice! [...]

Read More..>>

Extranet Lockout

ADFS in Windows Server 2012 R2 (some call it “ADFS v3″) comes with a number of very cool features – one of them is “Extranet Lockout Protection”: http://blogs.technet.com/b/rmilne/archive/2014/05/05/enabling-adfs-2012-r2-extranet-lockout-protection.aspx, https://technet.microsoft.com/en-us/library/dn486806.aspx. The idea behind that is that, if you expose your ADFS to the internet, which makes sense in many scenarios, and you use Web Application Proxy [...]

Read More..>>