Publishing and authenticating Exchange Server using AD FS and WAP

In this multi-part series, we’re going to look at how to use Active Directory Federation Services (AD FS) to allow Single Sign On (SSO) and pre-authentication to Exchange Server, allowing better interoperability for users sharing a web browser session with on-premises Exchange and Office 365. We’ll first demonstrate how to do this using techniques that…

Publishing Exchange to the Internet Using Web Application Proxy – Part 2

In part two of my series on publishing Exchange to the Internet using WAP (Web Application Proxy) we configure Active Directory for Kerberos Delegation, then publish the paths to Exchange using our WAP server. Note that if you are doing this in a HA environment, the steps to enable Kerberos for your CAS array should…

Publishing Exchange to the Internet using Web Application Proxy and AD FS 3.0 – Part 1

A great new feature in Windows Server 2012 R2 is Web Application Proxy. As part of my quest to find a supportable replacement for Hybrid Silent Redirection using TMG I’ve found Web Application Proxy may well be the solution to my problem. In my new two-part series on SearchExchange, we look at how to actually…

Configuring AD FS 2 with TMG-based SSO to Office 365

When configuring Office 365 for Single Sign On, Active Directory Federated Services 2.0 (AD FS) is the component that’s used to allow Office 365 to authenticate user accounts against your local Active Directory. In this article, we’ll walk through the installation and configuration of a Highly-Available AD FS environment, then the subsequent publishing via Microsoft…