ADFS 2.0 Default Home Realm

0
votes

What is the best way to customize ADFS to use a specific, configurable home realm if one was not provided?

My current method is to perform an HTTP redirect from the ADFS WebForms aspx file, but that seems a bit hackish.

I don't want my Relying Parties to be concerned with the home realms.

2
adfs2.0adfs
i've actually been wondering myself about this and would be curious to see if anyone's done this.robles

2 Answers

1
votes

I think that a good approach would be to add a few lines within the ADFS HomeRealmDiscovery page in order to read the "DefaultHomeRealm" setting from the ADFS web.config file.

Steps

  1. Go to C:\inetpub\adfs\ls
  2. Open the HomeRealmDiscovery.aspx.cs

  3. In the Page_Init method, add something like:

    if (ConfigurationManager.AppSettings["DefaultHomeRealm"] != null) { SelectHomeRealm(ConfigurationManager.AppSettings["DefaultHomeRealm"]); }

  4. Open the web.config file

  5. On the appSettings section, add:

    add key="DefaultHomeRealm" value="Default ADFS Federation Service Identifier"

Do not forget to replace the service URI that you want to be defaulted.

For more information you can check:

I have successfully used this approach.

I hope it helps :)

Seba

0
votes

Have a look at:

Windows Identity Foundation (WIF): How to Utilize the WS-Federation WHR Parameter to Bypass Home Realm Discovery (HRD).

The WS-Federation passive WHR parameter is used to bypass home realm discovery (HRD)