AD FS 2.0 Workshop – Installation prerequisites

This article is part of AD FS 2.0 Workshop – Complete High-availability platform

1. Installation Prerequisites

Before to install the AD FS 2.0 software, first we have to install some prerequisites.

1.1. Federation Servers

  • Fully patch the servers
  • Promote the Federation Servers as Domain Controllers (this part is out of the scope of this guide, so I won’t describe it here.)
  • Create an AD FS domain service account (No need to add this account to any specific group, the required privileges will be granted, SeServiceLogonRight and the SeAuditPrivilege, to this account by the AD FS Initial Configuration Wizard)

    • Here we will use ‘FEDERATION\svc_adfs’

  • Install the latest .NET Framework (i.e. v4.5)
  • Install IIS (Web-Server role)
    • Import-Module ServerManager
Add-WindowsFeature -Name Web-Server,Web-WebServer,Web-Common-Http,Web-Static-Content,Web-Default-Doc,Web-Dir-Browsing,Web-Http-Errors,Web-Http-Redirect,Web-App-Dev,Web-Asp-Net,Web-Net-Ext,Web-ASP,Web-CGI,Web-ISAPI-Ext,Web-ISAPI-Filter,Web-Health,Web-Http-Logging,Web-Log-Libraries,Web-Request-Monitor,Web-Http-Tracing,Web-Custom-Logging,Web-Security,Web-Basic-Auth,Web-Windows-Auth,Web-Client-Auth,Web-Cert-Auth,Web-Url-Auth,Web-Filtering,Web-IP-Security, Web-Performance,Web-Stat-Compression,Web-Mgmt-Tools,Web-Mgmt-Console,Web-Scripting-Tools,Web-Mgmt-Service,Web-Mgmt-Compat,Web-Metabase,Web-WMI,Web-Lgcy-Scripting,Web-Lgcy-Mgmt-Console,WAS,WAS-Process-Model
  • Windows PowerShell is a prerequisite of AD FS 2.0 installation.

    • Well, luckily we are using Windows 2008 R2 so it is already installed! Instead of what we would have been stucked at the last step…

  • Install the Windows Identity Foundation

    • http://www.microsoft.com/en-us/download/details.aspx?id=17331

  • Install SQL Server on the first Federation Server

    • SQL Server Express Edition is enough. SQL Server is used only to store AD FS Artifact and configuration. Yes, that’s a SPOF; in an ideal world we would use a MSCS SQL server existing installation.
    In order to eliminate this SPOF, here we’ll use 3 MS SQL Server Standard Edition instances to enable database mirroring.

  • Download the AD FS 2.0 software installer called ‘AdfsSetup.exe’

    • http://www.microsoft.com/en-US/download/details.aspx?id=10909

  • Download the ADFS 2.0 Rollup 3 installer (or higher if available)

    • http://support.microsoft.com/kb/2790338/en-us

1.2. Federation Server Proxies

  • Fully patch the servers
  • Install the latest .NET Framework (i.e. v4.5)
  • Install IIS (Web-Server role)
    • Import-Module ServerManager
Add-WindowsFeature -Name Web-Server,Web-WebServer,Web-Common-Http,Web-Static-Content,Web-Default-Doc,Web-Dir-Browsing,Web-Http-Errors,Web-Http-Redirect,Web-App-Dev,Web-Asp-Net,Web-Net-Ext,Web-ASP,Web-CGI,Web-ISAPI-Ext,Web-ISAPI-Filter,Web-Health,Web-Http-Logging,Web-Log-Libraries,Web-Request-Monitor,Web-Http-Tracing,Web-Custom-Logging,Web-Security,Web-Basic-Auth,Web-Windows-Auth,Web-Client-Auth,Web-Cert-Auth,Web-Url-Auth,Web-Filtering,Web-IP-Security, Web-Performance,Web-Stat-Compression,Web-Mgmt-Tools,Web-Mgmt-Console,Web-Scripting-Tools,Web-Mgmt-Service,Web-Mgmt-Compat,Web-Metabase,Web-WMI,Web-Lgcy-Scripting,Web-Lgcy-Mgmt-Console,WAS,WAS-Process-Model
  • Windows PowerShell is a prerequisite of AD FS 2.0 installation.

    • Well, luckily we are using Windows 2008 R2 so it is already installed! Instead of what we would have been stucked at the last step…

  • Install the Windows Identity Foundation

    • http://www.microsoft.com/en-us/download/details.aspx?id=17331

  • Download the AD FS 2.0 software installer called ‘AdfsSetup.exe’

    • http://www.microsoft.com/en-US/download/details.aspx?id=10909

  • Download the ADFS 2.0 Rollup 3 installer (or higher if available)

    • http://support.microsoft.com/kb/2790338/en-us

allright, we’re done here. We can now procede to the installation.


PS Fab:\>Get-RelatedPosts

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Scroll to Top