ADFS & ADFS Proxy over multiple sites for SSO on Office 365
Posted on 2014-08-07
We are trying to setup a hybrid setup for exchange 2013 and Office 365 - as well as using SSO.
We would like the ADFS machines to be fault tolerant and spread out over 2 physical sites for extra redundancy.
I have attached a diagram of the server setup over the 2 sites.
My questions are: How do we setup the NLB over 2 sites (with different IP ranges)
What would the Public DNS be pointing too for the STS address
What would the internal DNS be pointing too for the STS address
Please also note that the external domain and internal domain are the same (eg, domain.com is the public domain, and domain.com is the domain used for AD) - not sure If that makes a difference.