seperate ADFS farm for disaster recovery Office 365 Hybrid scenario

-

consider scenario have on premise adfs farm , planning place additional adfs server in windows azure office 365 hybrid environment, additional adfs server/new farm act secondary point of contact in case on premise adfs servers not available.

        can place “separate” adfs farm in windows azure? idea can avoid replication of adfs wid database(or shared db in case of sql) on premise azure

  1.        if place separate adfs farm in azure, new adfs farm in azure doesn’t know federated domain known on premise adfs farm. understand have again convert company.com federated domain convert-msoldomaintofederated -domainname company.com. supported run again adfs farm against same office 365 tenant?
  2.        if above point 1 , point 2 not valid options, hope options available me either use wid on adfs servers , replicate wid azure adfs server member of same farm, or optionally use shared sql database between on premise adfs , azure adfs.

 http://technet.microsoft.com/en-us/library/dn509536.aspx

hi,

to provide office 365 single sign-on integration of on-premises ad , windows azure, recommended use on-premises environment active use , azure business continuity. in case of disaster, failover between on-premises infrastructure , hosted infrastructure manual operation.

it not recommended setting a cross-premises, high-availability (active/active) configuration.

for more detailed information please refer these articles below:

white paper: office 365 adapter - deploying office 365 single sign-on using azure virtual machines

http://technet.microsoft.com/library/dn509539.aspx

deployment scenario: directory integration components in azure disaster recovery

http://technet.microsoft.com/en-us/library/dn509536.aspx

to more efficient assistance, suggest refer azure , adfs forums below:

azure active directory forum

https://social.msdn.microsoft.com/forums/azure/en-us/home?forum=windowsazuread

claims based access platform (cba), code-named geneva forum

http://social.msdn.microsoft.com/forums/vstudio/en-us/home?forum=geneva

best regards,

amy



Windows Server  >  Directory Services



Comments

  1. AnonymousApril 24, 2018 at 5:29 AM

    Good one... azure disaster recovery is very important to save data. I found this information very helpful. Thanks for sharing

    ReplyDelete

Post a Comment

Popular posts from this blog

WMI Repository 4GB limit - Win 2003 Ent Question

-
Image
hi there, i've question size limit on wmi repository (being 4gb). if isn't correct place post this, apologies , can let me know wheere post this? i've come across few servers running citrix have reached limit on wmi repository size , need install ibm director agent hw monitoring. during install getting 'out of disk space' errors entered in mofcomp.log: "(mon apr 02 04:10:36 2012.172843) : error occurred while processing item 4: (mon apr 02 04:10:36 2012.172843) : error number: 0x8004103b, facility: wmi description: out of disk space" when error number http://msdn.microsoft.com/en-us/library/windows/desktop/aa394559%28v=vs.85%29.aspx i see this: wbem_e_out_of_disk_space 2147749947 (0x8004103b) disk out of space or 4 gb limit on wmi repository (cim repository) size reached. windows xp , windows 2000/nt:   disk out of space. i'm wondering if there reason why limit set 4gb or can increase needs be? can't seem find reas...
Read more

Change home folder default permission?

-
i have searched on , can't seem find similar trying do. using windows server 2003 active directory. when create new user account on domain, use profile tab specify home directory user. when user logs in first time, active directory creates folder in specified path. working correctly. problem gives user full control on folder. has caused lot of problems because "clever" users have discovered thay can change permission on folder or subfolders beneath it. because don't want staff looking @ "sensitive" files. of course doesn't work since can take ownership of file , give myself permissions. causes trouble failed backups, inability scan these folders viruses, migration new storage etc. on occasion 1 of these users call me , ask file or folder restored, , @ point discover not have backup of files , cannot restore them. give them lecture, have on 2500 users, , can't talk them all. right have create account , login teh folder created, go take away full contr...
Read more

GPO(s) not being applied, Current Bandwidth >= Bandwidth Threshold?

-
we've had rash of group policies "stop" applying. today spent of day troubleshooting , here's i'm at. rsop.msc, when @ "display gpos , filtering status" cn={8f0af15b-ca97-4630-b0cf-17be7017d128},cn=policies,cn=system,dc=unitedcamera,dc=local not applied (unknown reason) found information on how turn on gpsvc.log try , more information. find around particular gpo this: ... gpsvc(31c.f30) 15:15:29:298 getbandwidthestimate returned bandwidth = 640584. gpsvc(31c.f30) 15:15:29:298 getbandwidthestimate returned latency = 0. gpsvc(31c.f30) 15:15:29:298 getbandwidthestimate returned cost = 0. gpsvc(31c.f30) 15:15:29:298 getbandwidthestimate returned connection type = 6. gpsvc(31c.f30) 15:15:29:298 getbandwidthestimate returned direct access = 0. gpsvc(31c.f30) 15:15:29:298 isslowlink: bandwidth threshold (winlogon) = 500. gpsvc(31c.f30) 15:15:29:299 isslowlink: wwan policy (system) = 0. gpsvc(31c.f30) 15:15:29:299 isslowlink: current ba...
Read more