Configure an ASP.NET Core 8 application to work with ADFS 2022

Let's create an ASP.NET Core 8 app to use Active Directory Federation Services for authentication and authorization. The .NET code will use OAuth 2.0 and OpenID Connect to communicate with ADFS, and we'll create an ADFS application group for the configuration. Start by opening up Visual Studio 2022 and creating a new project. You can use the free community edition to do this. For the project type, choose ASP.NET Core Web App (Razor Pages) Give your project a name On the Additional Information screen, leave the Framework as .NET 8.0. And leave the Authentication type as "None". We're going to…
Read More

Windows Authentication Not Working with ADFS 2022

When testing out Windows Authentication with a new ADFS deployment for Windows Server 2022, I found that users kept getting redirected to the Forms Authentication login page. Windows Authentication was definitely enabled as a Primary Authentication method in ADFS manager for Intranet authentication. Windows Integrated Authentication is supposed to take predecence over Forms Based Authentication (FBA) when the computer is joined to the domain, and therefore able to obtain a Kerberos ticket in the background. Going through the basic troubleshooting didn't yeild any results - the SPN for the ADFS service account was configured properly, the channel binding token wasn't…
Read More

Deploying a Web App on IIS and integrating with ADFS

In my Pluralsight course "Implementing Windows Server 2016 Identity Federation and Access", I use a sample application as a relying party that leverages ADFS for it's authentication. If you don't have a Pluralsight subscription you can access the course through a free trial here: Start a 10-day free trial at Pluralsight - Over 5,000 Courses Available If you want to create the ADFS claims app from scratch and see how to configure the Relying Party in ADFS, you can view my blog post here. This post will describe how to deploy the application to an IIS server. Prerequisites to do…
Read More

Creating an ASP.NET Relying Party application for ADFS 2016

In my Pluralsight course "Implementing Windows Server 2016 Identity Federation and Access", I use a sample application as a relying party that leverages ADFS for it's authentication.  This post will describe how to create and configure that ASP.NET MVC application within Visual Studio, and configure the corresponding Relying Party Trust in ADFS 2016.  In a future post I will show how to deploy the application to an IIS server. First, on your development computer running Visual Studio, make sure you can reach the XML metadata endpoint for the ADFS server on your network.  This could be a lab network of…
Read More