使用AWS实现ADFS3.0
[英]ADFS3.0 Implementation using AWS
问题描述
I am new to ADFS implementation, now trying to do some POC to check how ADFS works. 
我是ADFS实现的新手,现在尝试做一些POC来检查ADFS的工作原理。
I have created an AWS EC2 instance, Installed AD DS with 我创建了一个AWS EC2实例,已安装AD DS
Root Domain: branch.tree
Post Domain Changes implemented on EC2, the target server is changed to something like below 在EC2上实施的域名更改后,目标服务器将更改为如下所示
adfs.branch.tree.com
After AD DS successfully configured, I have installed and configured ADFS3.0 in the same instance with details as below 成功配置AD DS后,我在同一实例中安装并配置了ADFS3.0,详细信息如下所示
Federation Service Name: adfs-sts.branch.tree.com
Now, Do I need to create a subdomain for 'Branch' under tree domain and config this to a load balancer? 现在,我是否需要在树域下为“Branch”创建子域并将其配置为负载均衡器?
How can we make adfs-sts.branch.tree.com/adfs/ls/idpinitiatedsignon.htm available over the internet? 我们如何通过互联网提供adfs-sts.branch.tree.com/adfs/ls/idpinitiatedsignon.htm?
I tried to access the same URL with Public IP, it is accessible but when tried with FQDN it is not accessible. 我尝试使用公共IP访问相同的URL,它是可访问的,但是当尝试使用FQDN时,它是无法访问的。
1 个解决方案
解决方案1
0 2019-04-05 17:14:36
If it is accessible by IP but not by URL, the first thing you need to check is DNS resolution ( nslookup adfs-sts.branch.tree.com ) and make sure it matches up. 如果它可以通过IP访问而不是通过URL访问,则首先需要检查的是DNS解析( nslookup adfs-sts.branch.tree.com ),并确保它匹配。 If it does, start checking the DNS A and PTR records for bad entries. 如果是,请开始检查DNS A和PTR记录是否存在错误条目。
Since you are hosting both pieces on AWS you may be using Route 53, so sharing your configuration there would be the next troubleshooting step. 由于您在AWS上托管这两个部分,因此您可能正在使用Route 53,因此共享您的配置将是下一个故障排除步骤。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.