{"id":13024,"date":"2015-06-11T10:30:00","date_gmt":"2015-06-11T08:30:00","guid":{"rendered":"http:\/\/nolabnoparty.com\/?p=13024"},"modified":"2016-08-01T08:42:24","modified_gmt":"2016-08-01T06:42:24","slug":"adfs-3-0-install-wap-server-pt-4","status":"publish","type":"post","link":"https:\/\/nolabnoparty.com\/en\/adfs-3-0-install-wap-server-pt-4\/","title":{"rendered":"ADFS 3.0 install WAP Server - pt. 4"},"content":{"rendered":"<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap01\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap01.jpg\" alt=\"adfs30installwap01\" width=\"602\" height=\"202\" border=\"0\" \/><\/p>\n<p>To perform SSO with Office 365 outside the LAN, we need to configure the ADFS 3.0 service adding a WAP server placed in the DMZ zone.<\/p>\n<p>The Windows 2012 R2 with WAP role must be <strong>configured as standalone server<\/strong> and NOT joined to the domain.<\/p>\n<p><!--more--><\/p>\n<p>&nbsp;<\/p>\n<h2>Blog series<\/h2>\n<p><a href=\"https:\/\/nolabnoparty.com\/en\/adfs-3-0-setup-upn-suffix-for-office-365-sso-pt-1\/\">ADFS 3.0 setup UPN suffix for Office 365 SSO - pt. 1<\/a><br \/>\n<a href=\"https:\/\/nolabnoparty.com\/en\/adfs-3-0-ssl-certificate-signing-request-pt-2\/\">ADFS 3.0 SSL certificate signing request - pt. 2<\/a><br \/>\n<a href=\"https:\/\/nolabnoparty.com\/en\/adfs-3-0-install-adfs-server-pt-3\/\">ADFS 3.0 install ADFS Server - pt. 3<\/a><br \/>\nADFS 3.0 install WAP Server - pt. 4<br \/>\n<a href=\"https:\/\/nolabnoparty.com\/en\/adfs-3-0-federating-office-365-pt-5\/\">ADFS 3.0 federating Office 365 - pt. 5<\/a><br \/>\n<a href=\"https:\/\/nolabnoparty.com\/en\/adfs-3-0-install-directory-sync-tool-pt-6\/\">ADFS 3.0 install Directory Sync tool - pt. 6<\/a><br \/>\n<a href=\"https:\/\/nolabnoparty.com\/en\/adfs-3-0-deploy-office-365-pt-7\/\">ADFS 3.0 deploy Office 365 - pt. 7<\/a><\/p>\n<p>&nbsp;<\/p>\n<h2>Configure hosts file<\/h2>\n<p>Since the <strong>WAP server in the DMZ<\/strong> needs to communicate with the internal ADFS server to perform the <strong>authentication against Active Directory<\/strong>, a DNS entry must be configured in the hosts file of the server.<\/p>\n<p>Open the <strong>hosts file<\/strong> located in <strong>C:\\Windows\\System32\\drivers\\etc<\/strong> and add a new entry specifying the IP\u00a0 address of the ADFS server and the given name of the service.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap02\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap02.jpg\" alt=\"adfs30installwap02\" width=\"600\" height=\"376\" border=\"0\" \/><\/p>\n<p>Ping from WAP server to ADFS server in order to verify the correct <strong>DNS resolution<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap03\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap03.jpg\" alt=\"adfs30installwap03\" width=\"600\" height=\"304\" border=\"0\" \/><\/p>\n<p>&nbsp;<\/p>\n<h2>Install WAP role<\/h2>\n<p>From the <strong>Server Manager<\/strong> click <strong>Add roles and features<\/strong>\u00a0to add the WAP role in the server.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap04\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap04.jpg\" alt=\"adfs30installwap04\" width=\"600\" height=\"321\" border=\"0\" \/><\/p>\n<p>Click <strong>Next<\/strong> to start the role configuration.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap05\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap05.jpg\" alt=\"adfs30installwap05\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Select <strong>Role-based or feature-based installation<\/strong> option then click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap06\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap06.jpg\" alt=\"adfs30installwap06\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Select the option <strong>Select a server from the server pool<\/strong>, highlight the server from the list and click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap07\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap07.jpg\" alt=\"adfs30installwap07\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Select <strong>Remote Access<\/strong> role and click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap08\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap08.jpg\" alt=\"adfs30installwap08\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>No additional features to add, click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap09\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap09.jpg\" alt=\"adfs30installwap09\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Click <strong>Next<\/strong> to continue.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap10\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap10.jpg\" alt=\"adfs30installwap10\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Select the\u00a0<strong>Web Application Proxy<\/strong>\u00a0role service.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap11\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap11.jpg\" alt=\"adfs30installwap11\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Since the role requires additional tools to be installed, click on <strong>Add Features<\/strong> to proceed.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap12\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap12.jpg\" alt=\"adfs30installwap12\" width=\"430\" height=\"448\" border=\"0\" \/><\/p>\n<p>Once the additional features has been added and the <strong>Web Application Proxy<\/strong> role service is selected, click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap13\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap13.jpg\" alt=\"adfs30installwap13\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Thick <strong>Restart the destination server automatically if required<\/strong> option then click <strong>Yes<\/strong> to confirm.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap14\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap14.jpg\" alt=\"adfs30installwap14\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Click <strong>Install<\/strong> to proceed with the role installation.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap15\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap15.jpg\" alt=\"adfs30installwap15\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>The role is being installed in the server.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap16\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap16.jpg\" alt=\"adfs30installwap16\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>Click <strong>Close<\/strong> to exit the Wizard.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap17\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap17.jpg\" alt=\"adfs30installwap17\" width=\"600\" height=\"425\" border=\"0\" \/><\/p>\n<p>&nbsp;<\/p>\n<h2>Import the SSL certificate<\/h2>\n<p>Since an SSL certificate is required to establish the <strong>https connection to WAP server<\/strong>, same certificate installed in ADFS server can be used.<\/p>\n<p>Open the <strong>Certificates<\/strong> snap-in console, right click <strong>Personal<\/strong> item and select <strong>All Tasks &gt; Import<\/strong> options.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap18\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap18.jpg\" alt=\"adfs30installwap18\" width=\"600\" height=\"356\" border=\"0\" \/><\/p>\n<p>Click <strong>Next<\/strong> to continue.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap19\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap19.jpg\" alt=\"adfs30installwap19\" width=\"549\" height=\"528\" border=\"0\" \/><\/p>\n<p>In the <strong>File name<\/strong> field select the SSL certificate previously exported (see <a title=\"ADFS 3.0 SSL certificate signing request \u2013 pt. 2\" href=\"https:\/\/nolabnoparty.com\/en\/adfs-3-0-ssl-certificate-signing-request-pt-2\/\">part 2<\/a>) through the <strong>Browse<\/strong> button then click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap20\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap20.jpg\" alt=\"adfs30installwap20\" width=\"549\" height=\"528\" border=\"0\" \/><\/p>\n<p>Type the <strong>Password<\/strong> for the private key, select option <strong>Include all extended properties<\/strong> then click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap21\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap21.jpg\" alt=\"adfs30installwap21\" width=\"549\" height=\"528\" border=\"0\" \/><\/p>\n<p>Select <strong>Place all certificates in the following store<\/strong> option and use <strong>Personal<\/strong> as certificate store. Click <strong>Next<\/strong> to continue.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap22\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap22.jpg\" alt=\"adfs30installwap22\" width=\"549\" height=\"528\" border=\"0\" \/><\/p>\n<p>To complete the certificate import click on <strong>Finish<\/strong> button.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap23\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap23.jpg\" alt=\"adfs30installwap23\" width=\"549\" height=\"528\" border=\"0\" \/><\/p>\n<p>Click <strong>OK<\/strong> to close the confirmation window.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap24\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap24.jpg\" alt=\"adfs30installwap24\" width=\"261\" height=\"172\" border=\"0\" \/><\/p>\n<p>Select <strong>Certificates<\/strong> &gt; <strong>Personal<\/strong> to verify the imported certificate.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap25\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap25.jpg\" alt=\"adfs30installwap25\" width=\"600\" height=\"356\" border=\"0\" \/><\/p>\n<p>&nbsp;<\/p>\n<h2>Configure WAP<\/h2>\n<p>After installing the WAP role, the service has to be configured. Click on <strong>Open the Web Application Proxy Wizard<\/strong> to begin the setup.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap26\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap26.jpg\" alt=\"adfs30installwap26\" width=\"592\" height=\"330\" border=\"0\" \/><\/p>\n<p>Click <strong>Next<\/strong> when the WAP Configuration Wizard starts.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap27\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap27.jpg\" alt=\"adfs30installwap27\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>Type the configured name in the <strong>Federation service name<\/strong> field (i.e. <em>sts.nolabnoparty.com<\/em>) and enter the <strong>credential of a local administrator account<\/strong> of the server (remember the server is NOT joined to the domain). Click <strong>Next<\/strong> when done.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border-width: 0px;\" title=\"adfs30installwap28\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap28.jpg\" alt=\"adfs30installwap28\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>Select the <strong>imported SSL certificate<\/strong> to be used by the ADFS proxy.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap29\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap29.jpg\" alt=\"adfs30installwap29\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>Click <strong>Configure<\/strong> to start the WAP configuration.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap30\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap30.jpg\" alt=\"adfs30installwap30\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>The service is being configured.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap31\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap31.jpg\" alt=\"adfs30installwap31\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>When the process has been completed, click <strong>Close<\/strong> to exit the Wizard.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap32\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap32.jpg\" alt=\"adfs30installwap32\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>When you click on <strong>Close<\/strong>, automatically the <strong>Remote Access Management Console<\/strong> opens.<\/p>\n<p>&nbsp;<\/p>\n<h2>Publish application<\/h2>\n<p>To enable WAP, the application must be published from the <strong>Remote Access Management Console<\/strong>. In the <strong>Tasks<\/strong> pane, click on <strong>Publish<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap33\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap33.jpg\" alt=\"adfs30installwap33\" width=\"600\" height=\"313\" border=\"0\" \/><\/p>\n<p>The <strong>Publish New Application Wizard<\/strong> window opens. Click <strong>Next<\/strong> to begin.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap34\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap34.jpg\" alt=\"adfs30installwap34\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>Select the <strong>Pass-through<\/strong> option then click <strong>Next<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap35\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap35.jpg\" alt=\"adfs30installwap35\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>Give a <strong>Name<\/strong> to the web application to be published. Type the <strong>External URL<\/strong> field, select the <strong>External certificate<\/strong> and specify the <strong>Backend server URL<\/strong>. Click <strong>Next<\/strong> when done.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap36\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap36.jpg\" alt=\"adfs30installwap36\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>To publish the web application click on <strong>Publish<\/strong> button.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap37\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap37.jpg\" alt=\"adfs30installwap37\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>When the application has been published successfully, click <strong>Close<\/strong> to exit the Wizard.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap38\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap38.jpg\" alt=\"adfs30installwap38\" width=\"600\" height=\"489\" border=\"0\" \/><\/p>\n<p>The web application shows up in the <strong>Published Web Applications<\/strong> list. Close the <strong>Remote Access Management Console<\/strong>.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap39\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap39.jpg\" alt=\"adfs30installwap39\" width=\"600\" height=\"313\" border=\"0\" \/><\/p>\n<p>&nbsp;<\/p>\n<h2>Test the connection<\/h2>\n<p>To test the authentication process, from a device outside the LAN type the following URL in the browser:<\/p>\n<blockquote><p>https:\/\/adfsname.domain.com\/adfs\/ls\/IdpInitiatedSignon.aspx<\/p><\/blockquote>\n<p>In the example, the address <strong>https:\/\/sts.nolabnoparty.com\/adfs\/ls\/IdpInitiatedSignon.aspx<\/strong> is used in the browser.<\/p>\n<p>Click the <strong>Sign in<\/strong> button.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap40\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap40.jpg\" alt=\"adfs30installwap40\" width=\"600\" height=\"337\" border=\"0\" \/><\/p>\n<p>Enter the organizational account credentials and click <strong>Sign in<\/strong> button.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap41\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap41.jpg\" alt=\"adfs30installwap41\" width=\"600\" height=\"337\" border=\"0\" \/><\/p>\n<p>If the system shows the <strong>You are signed in<\/strong> message, the service is working as expected.<\/p>\n<p><img decoding=\"async\" style=\"background-image: none; float: none; padding-top: 0px; padding-left: 0px; margin: 0px auto; display: block; padding-right: 0px; border: 0px;\" title=\"adfs30installwap42\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2015\/06\/adfs30installwap42.jpg\" alt=\"adfs30installwap42\" width=\"600\" height=\"337\" border=\"0\" \/><\/p>\n<p><a href=\"https:\/\/nolabnoparty.com\/en\/adfs-3-0-federating-office-365-pt-5\/\">Part 5<\/a> will cover the <strong>federation process<\/strong> to connect the on-premises Active Directory with Office 365 platform.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/images\/firma.jpg\" alt=\"firma\" title=\"\"><\/p>\n","protected":false},"excerpt":{"rendered":"<p>To perform SSO with Office 365 outside the LAN, we need to configure the ADFS 3.0 service adding a WAP server placed in the DMZ zone. The Windows 2012 R2 with WAP role must be configured as standalone server and NOT joined to the domain.<\/p>\n","protected":false},"author":3,"featured_media":12982,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rop_custom_images_group":[],"rop_custom_messages_group":[],"rop_publish_now":"initial","rop_publish_now_accounts":{"linkedin_93tdZWzMZc_93tdZWzMZc":"","facebook_2879994398731222_17841400390232720":"","twitter_113568041_113568041":"","mastodon_115463926174894442_115463926174894442":""},"rop_publish_now_history":[],"rop_publish_now_status":"pending","footnotes":""},"categories":[1065,1721],"tags":[1564,1573,1583,1567],"class_list":["post-13024","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-microsoft-en","category-office365-en","tag-adfs","tag-dmz","tag-office365","tag-wap","has_thumb"],"_links":{"self":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/13024","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/comments?post=13024"}],"version-history":[{"count":0,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/13024\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media\/12982"}],"wp:attachment":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media?parent=13024"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/categories?post=13024"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/tags?post=13024"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}