Test Lab Guide Mini-Module: Install AD FS 2.0

This Test Lab Guide (TLG) Mini-Module describes how to install Active Directory Federation Services (AD FS) 2.0. You download, install, and run the primary wizards for AD FS 2.0 on the DC1 computer that is installed in the following lab environments:

• Isolated subnets
• Public cloud
• Azure

Active Directory Federation Services (AD FS) 2.0 helps IT enable users to collaborate across organizational boundaries and easily access applications on-premises and in the cloud, while maintaining application security. Through a claims-based infrastructure, IT can enable a single sign-on experience for end-users to applications without requiring a separate account or password, whether applications are located in partner organizations or hosted in the cloud. For more information about AD FS 2.0 see the AD FS 2.0 Content Map.

If you are running the base configuration test lab in a virtual environment, you can create snapshots of the virtual machines (VMs) for all of the test lab computers before performing the following procedure.

The following procedure installs AD FS 2.0 on the DC1 computer in the Base Configuration test lab. This is done to minimize the number of computers needed in the test lab. In a production environment, you would install AD FS 2.0 on a computer separate from a domain controller. Note that the function of DC1 as an enterprise claims provider is separate from its role as a domain controller.

Installing AD FS 2.0

1. For the isolated subnets configuration of the base configuration test lab, connect the DC1 computer to the Internet, making the appropriate changes to the network adapter configuration for Internet connectivity.
2. Go to the Active Directory Federation Services 2.0 RTW web page, and then click Continue.
3. On the Registration Suggested for This Download page, determine whether you want to register for this download.
4. From the Proceed to Download page, click Download next to RTW\W2K8R2\amd64\AdfsSetup.exe (the version for Windows Server 2008 R2 and later, which the DC1 computer runs).
5. When prompted with the File Download-Security Warning dialog box (Do you want to run or save this file?), click Run.
6. When prompted with the File Download-Security Warning dialog box (Do you want to run this software?), click Run. The Active Directory Federation Services 2.0 Setup Wizard runs.
7. On the Welcome to the AD FS 2.0 Setup Wizard page, click Next.
8. On the End-User License Agreement page, select I accept the terms of the License Agreement, and then click Next.
9. On the Server Role page, click Federation server, and then click Next.
10. On the Install Prerequisite Software page, click Next.
11. On the Completed the AD FS 2.0 Setup Wizard page, click Finish. The AD FS 2.0 management console displays and runs the AD FS 2.0 Federation Server Configuration Wizard.
12. On the Welcome to the AD FS 2.0 Federation Server Configuration Wizard page, click Create a new Federation Service, and then click Next.
13. On the Select Stand-Alone or Farm Deployment page, click Stand-alone federation server, and then click Next.
14. On the Specify the Federation Service Name page, select the certificate named DC1.corp.contoso.com in SSL certificate and Federation Service name, and then click Next.
15. On the Ready to Apply Settings page, click Next.
16. On the Configuration Results page, click Close.
17. Close the AD FS 2.0 management console.
18. For the isolated subnets lab environment, reconnect the DC1 computer to the Corpnet subnet and assign the IP address of 10.0.0.1 and subnet mask 255.255.255.0 to the network adapter configuration.

With this new configuration, AD FS is now installed on DC1 and you can use the AD FS management console (click Start, point to Administrative Tools, and then click AD FS 2.0 Management) to configure trusted relying parties, claims provider trusts, and attributes stores in other Test Lab Guides or test lab extensions.

If you are running this test lab in a virtual environment, you can create snapshots of the virtual machines (VMs) for all of the test lab computers to save this configuration.

For additional test lab guide resources, see Test Lab Guides.

For the latest information about TLGs, see the Test Lab Guides blog.