How to Set Up the AD FS 2.0 VM Lab Environment for Federated Collaboration

Applies To: Active Directory Federation Services (AD FS) 2.0

This document is intended for developers and system architects who are interested in completing the walkthrough demonstration of the features, functionality, and interoperability capabilities of AD FS 2.0 and Windows Identity Foundation (WIF).

About This Guide

This guide provides instructions for setting up federated identity technologies in a small test lab with servers running the Windows Server 2008 operating system. It explains how to install and configure all settings and prerequisite software necessary to create the four virtual machine (VM) images that you need to have available so that you can complete all the steps in the following guide:

• Federated Document Collaboration with Microsoft Office SharePoint Server 2007 and AD FS 2.0 (https://go.microsoft.com/fwlink/?LinkId=148503)

While you can download VM images that are preconfigured for trial use, this guide assists you if you choose to make the images yourself. The overall goal of this guide is to give you a good understanding of the base configuration requirements necessary to deploy and enable AD FS 2.0 technologies in your environment.

To maximize your chances of completing the objectives of this guide successfully, it is important that you do all of the following:

• Complete the steps in this guide in the order in which they are presented.

• Use the exact IP addresses that this guide specifies.

• Use the exact computer, user, group, company, claim, and domain names that this guide specifies.

The instructions in this guide take approximately four hours to complete.

What this guide does not provide

This guide does not provide the following information:

• Guidance for setting up and configuring AD FS 2.0 for federation in a production environment.

• Instructions for setting up and configuring a federation server proxy

• Instructions for setting up the test lab computer (Hardware and software requirements are listed in the following section, however.)

• Instructions for making your own base virtual hard drive (.vhd) images.

Requirements

To complete all the steps in this guide, you must have a virtual test lab computer where you can configure four virtual machines (VMs) running the Windows Server® 2008 R2 Enterprise operating system.

Your virtual test lab computer must be able to meet the minimum requirements in the following table.

Administrative credentials

To perform all the tasks in this guide, use the local Administrator account for each computer, unless instructed otherwise. To create accounts in Active Directory Domain Services (AD DS), log on with the Administrator account for the domain. For example, when you create user accounts for Contoso Pharmaceuticals, use the CONTOSO\Administrator account.

About the lab environment

For the virtual test lab environment, create four VMs. Each of the VMs that you create and configure can be used later to accomplish scenario tasks in which you implement and evaluate a claims-based federated identity solution as described in the Federated Document Collaboration with Microsoft Office SharePoint Server 2007 and AD FS 2.0 (https://go.microsoft.com/fwlink/?LinkId=148503) guide. To set up the test lab to accomplish the goals in that guide, follow the steps in order as described in the following tables to establish a working test lab environment.