I'm looking at designing an ADFS solution to accommodate 4,500 users to provide SSO with a web application.
I'm thinking of using 2 2012 R2 ADFS servers on my internal network and 2 2012 R2 Web Application Proxies in my DMZ, then load balancing the connections using an F5.
What I'm not sure about is how to achieve DR in another data center. For example is active-active in 2 different data centers supported? I was thinking of replicating my ADFS servers across the Data Centers, then simply performing a failover in the event of a disaster, but I'm not sure how well that would work in reality.
It would be great to hear from someone who's already done this.