It’s Friday night. Here I am.
Partying so hard. Getting wild. You mad haters? I could go through the VCE and memorize most of this stuff without really learning anything but that isn’t really that much fun. I’m that nerd that wants to learn the MesureUp stuff (a lot of isn’t on the test even though its the ‘official’ test prep material) and learn the actual test stuff. I’ve found that, shockingly, if you know the material it helps in having a diverse knowledge base to go through the questions and understand what the hell is going on. I know. It’s surprisingly honest way to go about things. That and feeling super hacker-man with a giant TV blasting rap videos, a super nice laptop open and working from my desktop with a giant monitor. I have a second monitor and wall mount on the way. I guess I could also get my work laptop out just feel extra computer. No worries, I have binders full of black hoodies too. Jokes aside, It gives the illusion that studying is worth my time as I’ve come along way from studying on a dell netbook. Its around here somewhere. I had to store screen shots on an external HD on that thing and port them over to Photobucket. Speaking of, I paid for a Photobucket sub and my images are still showing up with a watermark (support email has been sent, Karen). This is troubling to me.
Anyway, lets unpack this single question because there are a bunch of things that I don’t know as much as I would like about. For one, Azure MFA. I mean, I’m aware of the concept but I’m not entirely sure what it is in relation to Azure. So lets start in that spot. Well, lets start with the question and then I follow up with some links.
So the more I read about this the more I realize the question is not accurate, this is not a surprise. So an on prem server has nothing to do with ADFS because I was assuming that was the case but an on prem server does not require this so its almost erroneous information. Seriously, AD FS has nothing to do with with the items listed. It seems like they are over complicating how to install AD FS and upgrading your farm/forest functional level. Regardless I’m interested so lets keep going with this.
Sidenote, my face when I found out they changed forest functional level to farm:
This MSFT Passport thing, I cant find a damn bit of info on integrating this with AD. I’m this is the worst example of how to implement to much stuff to make sure that SSO doesn’t work that I’ve ever seen. I, mean ok LDAP v3 is not over the top but as to why your specifying MFA and Passport is a touch confusing. So it could be that I’m more confused than the wording of the question. However, I think the idea they are getting at is SSO with MFA with support for LDAP. However they are not really getting into the specifics of how they plan to do that which confuses nubs. Such as I. The other factor is that there isn’t one TN article that you can point to and say ‘this is SSO with MFA using Passport and Azure MFA. Still, the Azure bit seems like someone ordered guac on this burrito. Anyway, lets get into the LDAP bit.
Configure AD FS to authenticate users stored in LDAP directories
Ok, so we have that bit of confusion out of the way. Basically your using it regardless of if you are aware of it or not. It seems like the difference comes in with how and where your users are authenticating.
Anyway, so back to the question. So we just install AD-FS and we are done with SSO is what is implied here. OHHHH gosh. That’s a good one MeasureUp. So its on the 2 times with the changing the rolls from join a 2016 to the dom, turning off a roll and then raise the farm level. Ok. Sure.
xAFTERHOURSx 
Leave a Reply