Setting Up ADFS + Web App Proxy in Windows Server 2012 R2

This post has become one of the top posts on my blog so I’m giving it an update to better reflect some of the best resources available for setting up ADFS and Web Proxy in Windows Server 2012 R2 to enable Workplace Join. I also created a page with The Best AD FS and DirSync resources on web.

Firstly the official scenario guides from TechNet for Workplace Join.

Secondly take a look at this Web Application Proxy in Windows Server 2012 guide on the ntsystems blog, which is a little easier to follow.

Thirdly take a look at my colleague from Australia, Macca’s post on his demo adventures. One final word of caution, I found that my enterprise certs are being issued with a CRL that my “internet” client couldn’t get to…after much faffing I disabled CRL checking for Server certs on my client. **DO NOT do this in production**, in my isolated demo environment it’s fine. The setting is in Internet Options > Advanced > Security.

Finally, check out this other post on iOS in Enterprise. For me, this is a major reason for getting to grips with ADFS, Web Application Proxy and Workplace Join.

And if you’re not sure why you might want to do this, take a look at Brad Anderson’s blog…I’ll post some more on why and how to do this soon.