Microsoft’s identity solutions span on-premises and cloud-based capabilities, creating a single user identity for authentication and authorization to all resources, regardless of location. We call this hybrid identity. In this project, I will be setting up two (2) test Domain Controllers (Dc), Windows 10 PCs for the test, and ADFS Server to ensure users are authenticated on Premise. Please see the following guide Azure Active Directory integration with on-Premise AD using PTA , various methods available for integrating Azure Active Directory with on-Premise Active Directory, and also this guide for reasons to deploy AAD.
Part A – Infrastructural Requirements for deploying and testing Pass-Through Authentication (PTA): I created four VMs in Hyper-V Server
– DC1
– DC2 (Failover purpose (HA))
– Two (2) Windows10 clients for testing Seamless SSO (PTA)
Hyper-V ADFS Authentication Setup
1. Assign memory to easy VM of 4096MB
2. Assigned Virtual Hard Disk Size of 100 GB
3. Installed Operating System "Windows Server 2019 Standard (desktop Experience) and Windows 10 Enterprise for testing.Part B – Infrastructural Requirements for deploying and testing AD FS: I created five (5) VMs in Hyper-V Server
– AzureDC1
– AzureDC2
– AzureADFS (for ADFS testing only)
– Two (2) Windows10 client for testing
1. Assign memory to easy VM of 4096 MB
2. Assigned Virtual Hard Disk Size of 100GB
3. Installed Operating System "Windows Server 2019 Standard (desktop Experience) and Windows 10 Enterprise for testing.VMs Setup in Hyper-V environment
– Click on New under Actions on the Hyper-V Manager window
– This will open the window below
– Click on next and specify the VM name as shown below
– Under the Specify Generation, Select generation 2 because it provides better virtualization features etc., as shown below
– Under Assign Memory, enter your desired memory
Note: You can also decide to assign Dynamic Memory for this virtual machine. Under Configure Networking, select the right network adapter. This depends on whether you also want the internet to connect or want the VMs to be able to communicate with each other.
From the drop-down menu, select the right network adapter.
Note: You can decide to leave it as not connected
– Under “Connect Virtual Hard Disk”, enter your desired size in GB and click on next.
– Under the installation option, select install an operating system from a bootable image file and browse to it.
– Now finish the New Virtual Machine Wizard
– Now the virtual machine creation is complete.
Part C – Continue with the Operating System Installation
– This will display the VM in the list of Virtual Machines as shown below
– Right-click on the created VM
Note: Only follow this step if you wish to use a static ACA Address, otherwise go straight and “Connect” to the server using the next step below.
Click on settings, locate the Network Adapter and expand it and click on the Advanced features.
Here you can select static and enter the MAC Address. Finally, click on Apply and Ok.
Click on connect (by right-clicking on the VM)
– Click on start and select any key to boot as shown below
– This will lunch the Windows setup window
– Follow
– This will open the menu showing that status of “Installing Windows”
– When this finishes, it will prompt you to enter the Administrator Password as shown below.
Part D: Configure Networking and Other Server Basic Setup
– Open the Server Manager
Note: This opens automatically most times.
– Set the IP parameters (Static)
Note: Based on your need, this could also be dynamic if you have a DHCP Server.
– Set the Server name
See this link below on how to set up the domain controllers needed to support this deployment.
I welcome you to follow me on YouTube Channel. I hope you found this blog post on Hyper-V ADFS Authentication Setup helpful. Please let me know in the comment session if you have any questions.