[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 660
  • Last Modified:

server 2012 r2 / web application proxy / single sign-on / work folders

Hi,

Just to clarify that to support single sign-on in server 2012 r2 and work folders:

you need to use server 2012 r2 for the web application proxy and ADFS
your domain controllers need to be server 2012 r2
the file servers have to server 2012 r2
0
cmatchett
Asked:
cmatchett
  • 2
  • 2
1 Solution
 
Cliff GaliherCommented:
Only the file server needs to be 2012 R2. The DCs can be older and none of the other stuff is required for single sign-on.
0
 
cmatchettAuthor Commented:
the web application proxy has to be R2

The Web Application Proxy, a new feature under the Remote Access role in Windows Server 2012 R2

http://windowsitpro.com/windows-server-2012-r2/windows-server-2012-r2-active-directory-embraces-byod

As far as the DCs go, the above link does say that you can extend the schema and leave your DCs running an older version
0
 
cmatchettAuthor Commented:
from the above link

Accomplishing this doesn’t require that you upgrade all your domain controllers to Windows Server 2012 R2, just that you upgrade the schema to support new device object and attribute classes. What does need to be running the latest code, however, is the server running AD FS, and the Web Application Proxy.
0
 
Cliff GaliherCommented:
If you choose to use ADFS, then it needs to be 2012 R2. But ADFS is not a requirement.

Similarly the Web Apllocation Proxy is an entirely new role in 2012 R2. It doesn't even exist in older OSes.l, so of course *if* you run it, it needs to be R2. But there are other reverse proxies out there. Most UTMs provide basic reverse proxy functionality. WAP is not required. So I stand by my previous statement. Nothing I said was incorrect.
0

Featured Post

Vote for the Most Valuable Expert

It’s time to recognize experts that go above and beyond with helpful solutions and engagement on site. Choose from the top experts in the Hall of Fame or on the right rail of your favorite topic page. Look for the blue “Nominate” button on their profile to vote.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now