Installing and configuring the synchronization and federation environment
In this section, we provide guidance on implementing the basic synchronization and federation environment. We start with a simple infrastructure that just consists of the Identity Bridge, the Web Application Proxy, and small applications to show the main principles in practical use scenarios.
Preparing the group management service account - GMSA
Use the following steps to prepare the group management service account:
Log on to the Domain Controller ADS01 with the following credentials:
Username: Domain\AdminAccount
Password: YourPassword
Open a Windows PowerShell prompt with evaluated rights and enter:
Add-KdsRootKey -EffectiveTime (Get-Date).AddHours(-10)
Installing AD FS on IDB01
The following are the steps to install ADFD on IDB01:
Log on to the server IDB01 with the following credentials:
Username: Domain\AdminAccount
Password: YourPassword
Open Server Manager.
Go to Manage | Add roles and features.
Click Next | Next |...