Please enter search query.
Search <product_name> all support & community content...
Article: 100038695
Last Published: 2016-03-17
Ratings: 0 0
Product(s): Enterprise Vault
Description
Active Directory Federation Services (ADFS) is an application developed by Microsoft that provides users with single sign-on access to systems and applications located across organizational boundaries. It uses a claims-based access-control authorization model to maintain application security and implement federation identity.To install ADFS:
1. Open the Windows Server 2012 R2 Add Roles and Features Wizard and add the Active Directory Federation Services server role.
2. Once Active Directory Federation Services is installed, install a certificate unto the ADFS server.
Note: The certificate will be used for the federated service name (.i.e. fs.company.com)
3. Proceed through the wizard. Click Configure the Federation Service on this server.
4. On the Welcome page in the Active Directory Federation Services Configuration Wizard, choose an option for a federation server, and then click Next.
5. Select the account used to configure ADFS.
Note: Must be a domain level Admin account.
6. Proceed through the wizard. On the Specify Service Properties page, select your certificate, enter a Federation Service Name, and then enter a Federation Service Display Name.
Note: A DNS 'A record' must be created for the federation service name: fs.ev.local in the example above.
7. Specify the account to use for ADFS services to use.
Note: You may receive a warning stating that Group Managed Services Accounts are not available because the KDS Root Key has not been set. If a Group Managed Services Account is desired, execute the powershell command Add-KdsRootKey –EffectiveTime (Get-Date).AddHours(-10) on a domain controller .
Note: Group Managed Services Accounts require at least one Windows 2012 or later domain controller.
Note: The benefit of using Group Managed Service Accounts is it's auto-negotiate password update feature.
8. Specify the database to use by selecting either Windows Internal database or an existing SQL server.
9. Select Next and Configure to apply the settings and then Close to complete.
Was this content helpful?
Translated Content
Please note that this document is a translation from English, and may have been machine-translated. It is possible that updates have been made to the original version after this document was translated and published. Veritas does not guarantee the accuracy regarding the completeness of the translation. You may also refer to the English Version of this knowledge base article for up-to-date information.