3.0 Configuring the ADFS Plug-in

You can start the ADFS 3.0 Configurer manually or automatically after installation of the ADFS plug-in.

To run the ADFS 3.0 Configurer manually, perform the following steps:

  1. Click Start and specify ADFSv3 Support Configurer in Search.

  2. Select the appropriate option from the search results.

To configure the Advanced Authentication ADFS plug-in, perform the following steps:

  1. Specify a database connection in DB connection string or click Database.

  2. Specify a Server name of Microsoft SQL Server in Connection Properties.

  3. The Use Windows Authentication option is selected by default. Select the Use SQL Server Authentication for SQL authentication and specify the SQL Server credentials.

  4. Select or specify a database name.

  5. Click Test Connection.

    NOTE:A user account, in which the ADFS 3.0 Configurer is started must have the db_owner rights to access the database.

  6. Click OK.

  7. Click Check DB to validate access to the selected database.

  8. You might receive the following error that indicates the specified database does not exist:

    Cannot open database "<DatabaseName>" requested by the login. The login failed.Login failed for user '<Username>'.

    1. Click Init (create) DB to create a new database.

    NOTE:The Init (create) DB option for existing database is equivalent to Check DB option. The required tables and indices are not overwritten, if they have been already created.

    IMPORTANT:You must click the Check DB option or Init (create) DB option each time you want to reconfigure the ADFS 3.0 plug-in.

  9. Click Next.

  10. Copy the specified value from Service GUID (read only) under the Configure URL to a text file.

  11. Specify the following URL in V5 server API URL:

    http://<NAAFServer>/adfs/. Replace <NAAFServer> to an Advanced Authentication hostname (recommended) or IP address.

    WARNING:Ensure that the URL ends with a backslash'/'.

  12. Click Next.

  13. Select SSL certificate in the ADFS 3.0 HTTPS (SSL) certificate for browser endpoint list.

  14. Copy the text from Public key for V5 server to any text file.

    HINT:You can click Regenerate key if a currently used key was compromised. This is required only on one ADFS server in ADFS farm.

  15. Click Next.

  16. Click Switch ADFS 3.0 to work with V5.

  17. Click Save.

    IMPORTANT:You can click Switch ADFS 3.0 to normal mode if you want to disable the ADFS plug-in. You need to do this on only one ADFS server in ADFS farm.