Specify the Primary Federation Server and Service Account
Applies To: Active Directory Federation Services (AD FS) 2.0, Windows Server 2012
When you configure Active Directory Federation Services (AD FS) 2.0 in a server farm configuration, you must configure the AD FS 2.0 Windows service to run under a domain user account. You must also use this same account to run the same service across all other servers in the same farm. If you do not already have an account dedicated for this purpose, use Active Directory Domain Services (AD DS) to create this user account.
You can join more federation servers to your farm by providing the name of the primary federation server and the service account under which the farm is running. The primary federation server is the computer where you make changes to the Federation Service.
| Item | Detail |
|---|---|
Primary federation server name |
Specifies the computer name for the primary federation server in the farm. The wizard connects to the primary federation server to join this computer to the farm and synchronize data between both computers. |
Service account |
Provides a space for you to select the name for the service account to be used with AD FS 2.0. This service account has to be same across all the federation servers in the farm. |
Password |
Type the password for the service account that is specified in Service Account. |
If you are using SQL Server to store AD FS 2.0 configuration settings, you must run this wizard at a command line to join new servers to the server farm. For more information, see the following procedure.
To join a new federation server to an existing farm when you want to use SQL Server for the configuration database
If it is open, close and exit this wizard.
At a command prompt, change to the directory where AD FS 2.0 is installed (typically, %programfiles%\Active Directory Federation Services 2.0), and then type fsconfig.exe /help to view the detailed options for selecting SQL Server.