Link to home
Create AccountLog in
Avatar of compdigit44
compdigit44

asked on

ADFS 3.0 Proxy Enabled Endpoint

We have two internal ADFS 3.0 setup in a farm using a SQL DB. We also have two WAP servers in the DMZ. I noticed on our relaying party trust properties there is a tab for proxy enabled which I have been trying to read up on. I just want to be certain that our WAP are working and request are not going directly to the internal ADFS servers.
Avatar of Mahesh
Mahesh
Flag of India image

ADFS server will reject processing claims if they are appeared from WAP (internet) and not enabled on WAP (Proxy)
WAP itself do not have capability to identify and filter claims
If end point is enabled on ADFS level and blocked on WAP level, claim request will be processed for intranet and blocked from internet for  specific end point
Avatar of compdigit44
compdigit44

ASKER

How can I see if wap is enabled or disabled for an end point. Also should the proxy enabled tab be populated? All of our end point have this tab empty.
Does anyone have any addition thoughts on this?

Please...
ASKER CERTIFIED SOLUTION
Avatar of Mahesh
Mahesh
Flag of India image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
and if it is not enabled it goes direct to the backend ADFS servers? I am sorry but I am confused with this.