[Integration] ADFS as the Identity Provider for Adxstudio – Part 3 – Configure Relying Party Trust

In this article, I will detail how to configure Relying Party Trust in ADFS server. Please check out the Part 1 and Part 2 of this series which provides an overview of the solution and explains how to configure ADFS server.

[Integration] ADFS as the Identity Provider for Adxstudio – Part 1 – Overview

[Integration] ADFS as the Identity Provider for Adxstudio – Part 2 – Configure ADFS Server

Adding Relying Party Trust to ADFS

Using the AD FS Management tool, select Trust Relationships > Relying Party Trusts.

Click Add Relying Party Trust…
Welcome: Click Start
Select Data Source: Select Enter data about the relying party manually, click Next

Specify Display Name: Enter a name, click Next
- Example: https://portal.dyn365apps.internal/
Choose Profile: Select AD FS 2.0 profile, click Next

Configure Certificate: Click Next
Configure URL: Check Enable support for the WS-Federation Passive protocol
- Relying party WS-Federation Passive protocol URL: Enter https://portal.dyn365apps.internal/signin-federation
- Note: AD FS requires that the portal run on HTTPS
- The resulting endpoint has the following settings:
  - Endpoint type: WS-Federation
  - Binding: POST
  - Index: n/a (0)
  - URL: https://portal.dyn365apps.internal/signin-federation

Configure Identities: Specify https://portal.dyn365apps.internal, click Add, click Next
- If applicable, more identities can be added for each additional relying party portal. Users will be able to authenticate across any/all of the available identities.