Jorge's Quest For Knowledge!

All About Identity And Security On-Premises And In The Cloud – It's Just Like An Addiction, The More You Have, The More You Want To Have!

Archive for the ‘Version’ Category

(2014-02-23) Gathering Architectural Details From Your ADFS Infrastructure – ADFS Version

Posted by Jorge on 2014-02-23


If ADFS was installed in the past by someone else and there is little to no documentation, how do you know which version or ADFS is running? Keep reading to find out how to determine that!

Which version of ADFS is running?

If the operating system is running W2K3R2, the "Active Directory Federation Services (ADFS)" and "Internet Information Services (IIS)" Windows Components are installed, the Trust Policy is stored in an XML file, and the folder "C:\Windows\SystemData\ADFS" exists, then you are running ADFS v1.0. The ADFS Management GUI looks like:

image

Figure 1: The ADFS Management GUI In ADFS v1.0

If the operating system is running either W2K8 or W2K8R2, the "Active Directory Federation Services (ADFS)" and "Internet Information Services (IIS)" Server Roles are installed, the Trust Policy is stored in an XML file, and the folder "C:\Windows\SystemData\ADFS" exists, then you are running ADFS v1.1. The ADFS Management GUI looks like:

image

Figure 2: The ADFS Management GUI In ADFS v1.1

If the operating system is either running W2K8 or W2K8R2, the "Web Server (IIS)" Server Role is installed, the update "Active Directory Federation Services 2.0 (KB974408)", the file "C:\Program Files\Active Directory Federation Services 2.0\FSConfig.exe" exists and you are using either WID or SQL for the ADFS configuration, then you are running ADFS v2.0. The ADFS Management GUI looks like:

image

Figure 3: The ADFS Management GUI In ADFS v2.0

If the operating system is either running W2K12, the "Web Server (IIS)" and "Active Directory Federation Services" Server Roles are installed, the file "C:\Windows\Adfs\FSConfig.exe" exists and you are using either WID or SQL for the ADFS configuration, then you are running ADFS v2.1 (a.k.a. ADFS 2012). The ADFS Management GUI looks like:

image

Figure 4: The ADFS Management GUI In ADFS v2.1 (a.k.a. ADFS 2012)

If the operating system is either running W2K12R2, the "Active Directory Federation Services" Server Role is installed ("Web Server (IIS)" could be installed, but it is not required!), the file "C:\Windows\Adfs\FSConfig.exe" DOES NOT exist (but the folder "C:\Windows\Adfs" does) and you are using either WID or SQL for the ADFS configuration, then you are running ADFS v3.0 (a.k.a. ADFS 2012 R2). The ADFS Management GUI looks like:

image

Figure 5: The ADFS Management GUI In ADFS v3.0 (a.k.a. ADFS 2012 R2)

Also see: http://blogs.technet.com/b/askpfeplat/archive/2013/07/22/faq-on-adfs-part-1.aspx

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER: https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
######### http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

Posted in Active Directory Federation Services (ADFS), Security Token Service (STS), Version | 4 Comments »