We are using Microsoft Lab guide to build a test of AD Federation Services towards Sharepoint 2007.
We are using the Lab Guide "adfs2-sharepoint-federate
uide" and have come to Step 2: "Add the Domain Admins group as Adminstrator for the Sharepoint Site.
At this point one is supposed to enter "Role#Domain Admins" in the Extranet Zone security settings. This fails and and the message is "No exact match was found"
If you try to open the directory there is nothing there.
As I understand it the Extranet Zone at this point is set to access ADFS and not AD. Adding Domain Admins to the standard port 80 web application works fine so the problem seems to be when Sharepoint tries to Access ADFS.
There are no event logs which show anything untoward, either on the ADFS/AD server or the SP server. I am now going to do some tracing of this. Any suggestions as to where to start looking would be helpful