{"id":99,"date":"2016-04-26T12:13:58","date_gmt":"2016-04-26T04:13:58","guid":{"rendered":"https:\/\/rol801.com\/wordpress\/?p=99"},"modified":"2016-05-04T20:28:21","modified_gmt":"2016-05-04T12:28:21","slug":"microsoft-ems-intune-wp8-1-windows-10-pc-adfs-mfa-registration-%e5%a5%87%e6%80%aa%e6%89%93loop%e4%ba%8b%e4%bb%b6","status":"publish","type":"post","link":"https:\/\/rol801.com\/wordpress\/?p=99","title":{"rendered":"Microsoft EMS Intune &#8211; WP8.1 \/ Windows 10 PC &#8211; ADFS \/ MFA Registration \u5947\u602a\u6253loop\u4e8b\u4ef6"},"content":{"rendered":"<p><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" data-attachment-id=\"101\" data-permalink=\"https:\/\/rol801.com\/wordpress\/?attachment_id=101\" data-orig-file=\"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/index.png?fit=259%2C194&amp;ssl=1\" data-orig-size=\"259,194\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"index\" data-image-description=\"\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/index.png?fit=259%2C194&amp;ssl=1\" class=\"alignleft size-full wp-image-101\" src=\"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/index.png?resize=259%2C194&#038;ssl=1\" alt=\"index\" width=\"259\" height=\"194\" \/><\/p>\n<p>&nbsp;<\/p>\n<p>\u5462\u500b\u7d55\u5c0d\u4fc2\u8981\u8a71\u6bd4M\uff04 \u73a9\u8d77\u5605\u4e00\u6a23\u91ce\u3002 \u5230\u5462\u5bb6\u4f30\u8a08\u4e09\u500b\u6708\uff0c\u7121\u4eba\u8a71\u5230\u7540\u6211\u77e5\u9053\u6709\u54a9\u76f8\u95dc\u3002 \u4ee5\u81ea\u5df1\u6240\u4ee5\u4e86\u89e3\u4fc2\u3002 Azure Cloud MFA \u540c On-Premises MFA Server \u4e26\u5514\u6703\u5171\u5b58\u3002\u4f46\u4fc2Intune Portal \u5605 MFA option \u53ea\u7747Cloud MFA\u3002 \u6240\u4ee5\u51fa\u4e8b\u3002\u3002\u3002 \u800c\u5462\u500boption.. \u53ea\u5c0dWP\uff0f Windows PC \u6709\u53cd\u61c9\u3002\u3002\u3002 \u53ef\u60e1 M\uff04\u3002\u3002\u3002<\/p>\n<p>\u5982\u679c\u6709\u7528ADFS\uff0c \u6709 set MFA\u3002 \u4e0b\u9762\u500bcheckbox\u4e00\u5b9a\u5514\u53ef\u4ee5tick!@#$%^&amp;*()_<\/p>\n<p>&nbsp;<\/p>\n<p>PS. 04\/May\/2016 \u9072\u4f86\u7684\u7b54\u6848\u3002 \u7d42\u65bc\u6435\u5230\u4f60&#8230;<\/p>\n<blockquote data-secret=\"61SLoOZLIg\" class=\"wp-embedded-content\"><p><a href=\"https:\/\/www.petervanderwoude.nl\/post\/how-to-configure-multi-factor-authentication-in-microsoft-intune-part-2-the-single-sign-on-method\/\">How to configure multi-factor authentication in Microsoft Intune &ndash; Part 2: The single sign-on method<\/a><\/p><\/blockquote>\n<p><iframe loading=\"lazy\" class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; clip: rect(1px, 1px, 1px, 1px);\" src=\"https:\/\/www.petervanderwoude.nl\/post\/how-to-configure-multi-factor-authentication-in-microsoft-intune-part-2-the-single-sign-on-method\/embed\/#?secret=61SLoOZLIg\" data-secret=\"61SLoOZLIg\" width=\"600\" height=\"338\" title=\"&#8220;How to configure multi-factor authentication in Microsoft Intune &ndash; Part 2: The single sign-on method&#8221; &#8212; More than just ConfigMgr\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe><\/p>\n<p>&#8220;<u>Note<\/u>: It\u2019s important to <strong><u>not<\/u><\/strong> configure any additional multi-factor authentication settings. Not in the global authentication policy and not in the <em>Microsoft Office 365 Identity Platform<\/em> authentication policy. Configuring these settings will cause multi-factor authentication to be triggered for more then just the device enrollment in Microsoft Intune. &#8221;<\/p>\n<p><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" data-attachment-id=\"100\" data-permalink=\"https:\/\/rol801.com\/wordpress\/?attachment_id=100\" data-orig-file=\"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/Intune_Cloud_MFA.png?fit=1319%2C630&amp;ssl=1\" data-orig-size=\"1319,630\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"Intune_Cloud_MFA\" data-image-description=\"\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/Intune_Cloud_MFA.png?fit=840%2C401&amp;ssl=1\" class=\"alignleft size-full wp-image-100\" src=\"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/Intune_Cloud_MFA.png?resize=840%2C401&#038;ssl=1\" alt=\"Intune_Cloud_MFA\" width=\"840\" height=\"401\" srcset=\"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/Intune_Cloud_MFA.png?w=1319&amp;ssl=1 1319w, https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/Intune_Cloud_MFA.png?resize=300%2C143&amp;ssl=1 300w, https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/Intune_Cloud_MFA.png?resize=768%2C367&amp;ssl=1 768w, https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/Intune_Cloud_MFA.png?resize=1024%2C489&amp;ssl=1 1024w, https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/04\/Intune_Cloud_MFA.png?resize=1200%2C573&amp;ssl=1 1200w\" sizes=\"auto, (max-width: 709px) 85vw, (max-width: 909px) 67vw, (max-width: 1362px) 62vw, 840px\" \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&nbsp; \u5462\u500b\u7d55\u5c0d\u4fc2\u8981\u8a71\u6bd4M\uff04 \u73a9\u8d77\u5605\u4e00\u6a23\u91ce\u3002 \u5230\u5462\u5bb6\u4f30\u8a08\u4e09\u500b\u6708\uff0c\u7121\u4eba\u8a71\u5230\u7540\u6211\u77e5\u9053\u6709\u54a9\u76f8\u95dc\u3002 \u4ee5\u81ea\u5df1\u6240\u4ee5\u4e86\u89e3\u4fc2\u3002 Azure Cloud MFA \u540c On-Premises MFA Server \u4e26\u5514\u6703\u5171\u5b58\u3002\u4f46\u4fc2Intune Portal \u5605 MFA option \u53ea\u7747Cloud MFA\u3002 \u6240\u4ee5\u51fa\u4e8b\u3002\u3002\u3002 \u800c\u5462\u500boption.. \u53ea\u5c0dWP\uff0f Windows PC \u6709\u53cd\u61c9\u3002\u3002\u3002 \u53ef\u60e1 M\uff04\u3002\u3002\u3002 \u5982\u679c\u6709\u7528ADFS\uff0c \u6709 set MFA\u3002 \u4e0b\u9762\u500bcheckbox\u4e00\u5b9a\u5514\u53ef\u4ee5tick!@#$%^&amp;*()_ &nbsp; PS. 04\/May\/2016 \u9072\u4f86\u7684\u7b54\u6848\u3002 \u7d42\u65bc\u6435\u5230\u4f60&#8230; How to configure multi-factor authentication in Microsoft Intune &ndash; Part 2: The single sign-on method &#8220;Note: It\u2019s important &hellip; <a href=\"https:\/\/rol801.com\/wordpress\/?p=99\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Microsoft EMS Intune &#8211; WP8.1 \/ Windows 10 PC &#8211; ADFS \/ MFA Registration \u5947\u602a\u6253loop\u4e8b\u4ef6&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[2,4,3],"tags":[],"class_list":["post-99","post","type-post","status-publish","format-standard","hentry","category-it","category-mdm","category-microsoft"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p71O8A-1B","jetpack-related-posts":[{"id":71,"url":"https:\/\/rol801.com\/wordpress\/?p=71","url_meta":{"origin":99,"position":0},"title":"ADFS 3.0 -> MFA Setup Configuration","author":"rol801","date":"January 6, 2016","format":false,"excerpt":"\u00a0 \u00a0 \u00a0 \u00a0 \u57fa\u65bc\u88abM\uff04 \u6311\u6a5f\u8a71\u73a9 ADFS \u8981\u7528 On-Premises MFA \u5148\u5920\u597d\u3002 \uff08\u5f80\u5f8c\u5c31\u4fc2\u554f M\uff04\u9ede\u89e3 Cloud MFA \u505a\u5514\u5230Intranet IP by pass MFA) \u7528\u6700\u7c21\u55ae\u5605\u65b9\u6cd5\u4fc2 MFA server \u5b89\u4fc2 ADFS \u540c\u4e00\u90e8\u5e7e\u3002 \u5b89\u88dd\u540c\u5927\u90e8\u5206configure \u4ee5\u4e0b\u9762URL\u70ba\u597d\uff0c \u6bd4Microsoft Official Article \u66f4\u65b9\u4fbf Reference https:\/\/4sysops.com\/archives\/azure-multi-factor-authentication-part-7-securing-ad-fs\/ \u4f46\u4fc2\uff0c\u8981\u63d0\u53ca MFA User Portal\u6703\u7121\u795e\u795e\u9ed0\u7dda login \u5514\u5230\uff0c \u751a\u81f3\u5f71\u97ff\u5230\u4e00\u822c\u7528\u5605ADFS \u721bpage\u3002\u4fc2\u5b89\u88dd\u9014\u4e2dReboot Server\u591a\u7684\u4e8b....... \u6700\u5f8c\u6700\u7d93\u5178\u5605\u4fc2Microsoft \u5605 article \u932f\u8aa4\u52c1\u591a\u3002 PowerShell Commmand \u81ea\u5df1\u780c\u4f46\u4fc2\u7528\u9ece\u5305Parameter\u2026","rel":"","context":"In &quot;ADFS&quot;","block_context":{"text":"ADFS","link":"https:\/\/rol801.com\/wordpress\/?cat=13"},"img":{"alt_text":"mfa_thumb","src":"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/01\/mfa_thumb-300x179.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":58,"url":"https:\/\/rol801.com\/wordpress\/?p=58","url_meta":{"origin":99,"position":1},"title":"Exchange 2013 OWA\/ECP < - > ADFS Authentication","author":"rol801","date":"December 15, 2015","format":false,"excerpt":"\u5462\u500bTopic\uff0c\u81ea\u5df1\u7d55\u5c0d\u6703\u8a55\u5b9a\u70ba\u4eca\u5e74\u505a\u904e\uff0c\u7e7c\u591a\u5e74\u524dSharePoint 2010\u5f8c\uff0c\u6700\u96e3\uff0c\u6700\u597d\u73a9\u5605\u4e00\u6a23\u3002 \u57fa\u5982ADFS 3.0\u5df2\u6709\uff0c\u62cdMicrosoft O365\/Azure \u5605SSO \u4ea6\u4fc2\u5169\u65e5\u5167\u8d77\u8eab\u3002\u8ad7\u5514\u51fa\u6709\u5572\u54a9\u7406\u7531\u5514\u53bb\u505a\u57cb\u4f62 \u00a0 \u6574\u500bsetup\u9032\u884c\u5de6\u4e09\u65e5.\u7576\u4e2d\u8981\u63d0\u6700\u96e3,\u4fc2\u4e00\u8def\u5931\u6557\u7576\u4e2dresearch \/ adjustment. \u800c\u4ee4\u5230\u5481\u9577\u6642\u9593\u5605\u539f\u56e0\u4fc2\u4ee5\u4e0b...... 1. Exchange Server 2013\uff1a\u907f\u514d\u554f\u984c\uff08\u4ea6\u767c\u73fe\u592a\u8010\u7121\u66f4\u65b0\uff0c\u7531SP1 upgrade \u53bb CU10\uff09 2. ADFS Server Signing Token Certificate : \u7d55\u5c0d\u4fc2\u4e00\u500b\u610f\u5916\u6536\u7a6b\u5605\u505a\u6cd5\u3002 \u540c\u6642\u4ea6\u8b49\u660e\u53ea\u9700\u8981Update Azure AD \u4e00\u6b21\u5c31\u5f97\uff0c\u5514\u6703\u5f71\u97ff\u820a\u6709 Federation Trust \"Update-MSOLFederatedDomain \u2013DomainName\" https:\/\/azure.microsoft.com\/en-us\/documentation\/articles\/active-directory-aadconnect-o365-certs\/ http:\/\/hazelnest.com\/blog\/blog\/2015\/07\/05\/exchange-2013-using-adfs-to-authenticate\/ http:\/\/nikpatel.net\/2014\/12\/22\/renew-expired-adfs-token-certificates-for-adfs-2-0-and-sharepoint-2013-on-premises\/ 3. Exchange Server Internal\/External Url \uff1a Reference URL \u7121\u4e00\u500b\u4fc2\u7528 .local Domain......\u800c\u4fc2Exchange configure\u2026","rel":"","context":"In &quot;ADFS&quot;","block_context":{"text":"ADFS","link":"https:\/\/rol801.com\/wordpress\/?cat=13"},"img":{"alt_text":"adfs-logo","src":"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2015\/12\/adfs-logo-300x39.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":295,"url":"https:\/\/rol801.com\/wordpress\/?p=295","url_meta":{"origin":99,"position":2},"title":"Azure AD Seamless SSO","author":"rol801","date":"February 28, 2018","format":false,"excerpt":"\u00a0 \u00a0 \u00a0 \u00a0 Seamless SSO\uff0c\u4e00\u500b\u66fe\u7d93\u89ba\u5f97\u597d\u96e3\u597d\u96e3\u5605\u6771\u6771\u3002\u4f46\u4fc2\u7d93\u904e\u5462\u5169\u4e09\u5e74\u524dConfigure Kerberos\uff0c\u540c\u958b\u59cb\u63a5\u89f8SAML\u5f8c\u5f97\u5230\u5605\u7d93\u9a57\u3002 Seamless SSO\u5514\u518d\u4fc2\u5481\u96e3\u4ee5\u89f8\u6478\u3002 \u7b2c\u4e00\uff0c\u90fd\u4fc2\u8981\u591a\u8b1d\u6211\u54cb\u5049\u5927\u5605Microsoft\u3002Azure AD\u4fc2\u4e0a\u5e74\u4e5d\u6708\u5de6\u53f3\u5605Update\u3002 Pass-Through Authentication\u3002Microsoft \u89e3\u91cbBenefit\u4fc2Authentication\u6703\u8fd4\u8fd4OnPremises AD\u505a\uff0c\u53ef\u4ee5\u5514\u9700\u8981\u958bPassword Sync\u3002 \u4fc2\u53e6\u4e00\u65b9\u9762\uff0c\u96d6\u7136\u5df2\u7d93\u6709ADFS WAP\uff0c\u4f46\u4fc2\u4fc2DMZ\u5605\u95dc\u4fc2\uff0c\u4fc2\u7121join AD\u3002\u6240\u4ee5Azure Pre-Authentication\u4fc2\u7528\u5514\u5230\u3002\u4fc2\u53e6\u4e00\u65b9\u9762\uff0c\u96d6\u7136\u5df2\u7d93\u6709ADFS WAP\uff0c\u4f46\u4fc2\u4fc2DMZ\u5605\u95dc\u4fc2\uff0c\u4fc2\u7121join AD\u3002\u6240\u4ee5Azure Pre-Authentication\u4fc2\u7528\u5514\u5230\u3002\u4f46\u4fc2\u7528Application Proxy Connector\u5c31\u7121\u5462\u500b\u9650\u5236\u3002Application Proxy Connector\u53ef\u4ee5\u5b89\u88dd\u4fc2\u4efb\u4f55\u4e00\u90e8Domain Joined Server\u3002\u4fc2\u5462\u500b\u56e0\u7d20\u4e4b\u4e0b\uff0cMachine Account \u884c Kerberos\u5c31\u7d55\u5c0d\u7121\u96e3\u5ea6\u3002 \u6b65\u9a5f\u53ef\u4ee5\u7167\u8ddfMicrosoft\u3002\u8b02\u7368\u6709\u4e00\u500bStep\u4ee4\u6211\u7279\u5225\u7559\u610f\uff0c\u56e0\u70ba\u540c\u4ee5\u5f80Configure KCD\u5514\u540c\u3002Common\u4fc2Delegation - \"Trust this computer for delegation to specified services only\" \u4e0b\u9762\u5605Section\u4fc2\u63c0\u00a0\"Kerberos only\"\uff0c\u4f46\u4fc2\u4eca\u6b21Config Application Proxy Delegation\u4fc2\u7528\"Use Any\u2026","rel":"","context":"In &quot;Azure AD&quot;","block_context":{"text":"Azure AD","link":"https:\/\/rol801.com\/wordpress\/?cat=14"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2018\/02\/microsoft-azure-640x401.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2018\/02\/microsoft-azure-640x401.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2018\/02\/microsoft-azure-640x401.png?resize=525%2C300&ssl=1 1.5x"},"classes":[]},{"id":237,"url":"https:\/\/rol801.com\/wordpress\/?p=237","url_meta":{"origin":99,"position":3},"title":"Work Place by Facebook integrate with Azure AD &#8211; Part II &#8211; Azure AD Enterprise App Configuration \/ Work Place SSO Authentication","author":"rol801","date":"August 16, 2017","format":false,"excerpt":"\u00a0 \u00a0 \u00a0 \u00a0 Part II \u7e8cPart I\u3002Work Place Subdomain \u6e96\u5099\u5c31\u7d6e\uff5e\u958b\u59cb\u6232\u8089\u3002SAML Config\u3002 \u5982SalesForce\u4e00\u6a23\uff0c\u5927\u8def\u5605Idp\uff08ADFS \/ Azure AD \/G Suite \/ OKTA \/ One Login \/ Ping Identity)\u90fd\u6709article\u8b1b\u9ede\u505a\u3002\u57fa\u65bcDomain \u5df2\u7d93\u4fc2 Azure AD \u4e0a\u9762Federated\uff0c\u4ea6\u5373\u4fc2\u540cOffice365 \u4e00\u6a23\uff0c \u6703\u8fd4ADFS Server \u505aAuth \/ MFA\u3002 \u6240\u4ee5\u4fc2\u5514\u9700\u8981\u8003\u616eADFS \u500barticle \u9ede\u505a\u3002 SAML configuration \u5514\u96e3\u3002\u57fa\u672c\u90fd\u4fc2\u5169\u908a\u8cc7\u6599 Copy n Paste\u3002 \u4f46\u4fc2\u6700\u944a\uff0c\u6700\u6015\u5c31\u4fc2\u5169\u908a\u5404\u81ea\u5404\u63cf\u8ff0\u3002Field\u540d\u5514\u77e5\u908a\u500b\u5c0d\u908a\u500b\u3002 \u4eca\u6b21\u90fd\u4fc2\uff0c\u5148Configure \u4fc2Azure AD\uff0cFirst Try\u7167\u8ddfArticle\u4fc2\u5514\u5920Parameters\u2026","rel":"","context":"In &quot;ADFS&quot;","block_context":{"text":"ADFS","link":"https:\/\/rol801.com\/wordpress\/?cat=13"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2017\/08\/azure-active-directory.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":111,"url":"https:\/\/rol801.com\/wordpress\/?p=111","url_meta":{"origin":99,"position":4},"title":"MFA Server upgrade 6.3.1 > 7.0.2  . \u5f8c\u77e5\u5f8c\u89ba\uff5e\u4e2d\u4f0f\u4e86\uff5e","author":"rol801","date":"July 12, 2016","format":false,"excerpt":"\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u54a9\u90fd\u5514\u4f7f\u8b1b\uff5e.Net2.0\u8f49\u53bb.Net4.0 ADFS Adapter \u6539\u540d\uff0c\u8981\u7528\u820asource\u5148uninstall\uff0c\u518d\u7528\u65b0source\u518d\u5b89\u500b\uff0c\u518dRegister Adapter... M\uff04\u8a18\uff1a\u4f60\u73a9\u5f97\u900f\u3002\u3002\u3002\u3002\uff5e\uff01\uff20\uff03\uff04\uff05?\uff06\uff0a\uff08\uff09 \u00a0 Reference site: http:\/\/c7solutions.com\/2016\/04\/upgrading-azure-multi-factor-authentication-server http:\/\/c7solutions.com\/2016\/04\/upgrading-mfa-6-3-1-to-version-7","rel":"","context":"In &quot;ADFS&quot;","block_context":{"text":"ADFS","link":"https:\/\/rol801.com\/wordpress\/?cat=13"},"img":{"alt_text":"mfa_thumb","src":"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2016\/01\/mfa_thumb.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":285,"url":"https:\/\/rol801.com\/wordpress\/?p=285","url_meta":{"origin":99,"position":5},"title":"\u63a5\u9023\u795e\u79d8Config\u6bd4\u6539\u52d5\u4e8b\u4ef6 I &#038; II &#8230;&#8230;. Kerberos Auth","author":"rol801","date":"February 10, 2018","format":false,"excerpt":"\u00a0 \u00a0 \u00a0 \u00a0 \u7e7c\u4e8c\u661f\u671f\u524d\u51fa\u73feExchange Server CBA vDirectory \u88ab\u5514\u6b63\u5e38\u5730disable Apphost settings\u00a0\u7531True\u8b8aFalse\u5f8c \u4fc2\u524d\u65e5\u518d\u51fa\u73fe\u795e\u79d8\u4e8b\u4ef6\u3002\u4eca\u6b21\u4fc2\u5169\u500b OKTA Connector \u540c\u6642disconnect\uff0c\u5f15\u767c\u5b8c\u5168\u7121\u6cd5Login\u4e4b\u5916\uff0c\u5c31\u4fc2OKTA IWA(Integrated Windows Authentication) Agent Website\u00a0\u7528\u4f5cKerberose \u5605SPN\u7a81\u7136\u6d88\u5931\u3002 \u6240\u4ee5\u4eca\u6b21\u5462\u500b\u5beb\u5605IIS Configure Kerberos Auth\u5605\u6eab\u6545\u77e5\u65b0 \u4e0b\u9762Reference\u5605Website\u503c\u5f97\u4e00\u7747\u3002\u4f46\u4fc2\u60f3\u7279\u5225\u63d0\u51fa\u8981\u7559\u610f\u5605\u6709\u4ee5\u4e0b \u4fc2\u958b\u5605IIS Website\u6703\u7528Service Account\u4ee5\u5514\u7528Default \u5605Application Pool Identity\uff0c\u5c0d\u5f80\u5f8ccreate SPN\u6703\u5bb9\u6613\u63a7\u5236 \u4fc2IIS\u5605Configuration Editor,\"system.webServer > security > authentication > windowsAuthentication\",\u5165\u9762\u5605 \"useAppPoolCredentials\"\u00a0\u8981Set\u505aTrue \u6700\u5f8c\uff0c\u5982\u679c\u65b0Configure\u5605IIS Website\u540cServer\u672c\u8eab\u6a5f\u540d\u5514\u540c Sample \u6a5f\u540d\u539f\u672c\u4fc2 \"ServerA.domain.local\" \uff0c \u4f46\u4fc2\u65b0IIS WebSite\u2026","rel":"","context":"In &quot;IT&quot;","block_context":{"text":"IT","link":"https:\/\/rol801.com\/wordpress\/?cat=2"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/rol801.com\/wordpress\/wp-content\/uploads\/2018\/02\/logo-500px-300x300.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]}],"_links":{"self":[{"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/99","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=99"}],"version-history":[{"count":3,"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/99\/revisions"}],"predecessor-version":[{"id":105,"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/99\/revisions\/105"}],"wp:attachment":[{"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=99"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=99"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rol801.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=99"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}