Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Applies To: Windows Server 2003 R2
When you install an additional federation server in a server farm, you add the Federation Service component of Active Directory Federation Services (ADFS) and use the trust policy file that is used by other federation servers in the server farm. A token-signing certificate must have been installed or imported into the local certificate store. The trust policy file must also be available on the network.
Administrative credentials
To complete this procedure, you must be a member of the Administrators group on the local computer.
Click Start, point to Control Panel, and then click Add or Remove Programs.
In Add or Remove Programs, click Add/Remove Windows Components.
In the Windows Components Wizard, select the Active Directory Services check box, and then click Details.
In the Active Directory Services dialog box, select the Active Directory Federation Services (ADFS) check box, and then click Details.
In the Active Directory Federation Services (ADFS) dialog box, select the Federation Service check box, and then click OK. If a message appears stating that ASP.NET 2.0 was not previously enabled, click Yes to enable it, and then click OK.
In the Active Directory Services dialog box, click OK.
In the Windows Components Wizard, click Next.
On the Federation Service page, click Select token signing certificate, and then click Select to select the appropriate token-signing certificate from the local certificate store.
In the Select Certificate dialog box, click the exported token-signing certificate, and then click OK.
Under Trust policy, click Use an existing trust policy, and then click Browse.
In the Browse dialog box, click the shared TrustPolicy.xml file, and then click Open.
If you are prompted for the location of the installation files, navigate to R2 Installation Folder\cmpnents\r2, and then click OK.
On the Completing the Windows Components Wizard page, click Finish.
Implementing a Server Farm of Federation Servers
Export the private key portion of a token-signing certificate