Configure the Windows NT token-based Web Agent

Applies To: Windows Server 2003 R2

The following procedure must be completed on the Web server so that clients in the account partner organization can access Windows NT token–based applications, such as SharePoint sites, that are hosted on the Web server in the resource partner organization.

To enable the Windows NT token–based Web Agent

1. Click Start, point to Administrative Tools, and then click Internet Information Services (IIS) Manager.

2. In the console tree, double-click YourComputerName**(local computer)**, right-click Web Sites, and then click Properties.

3. On the ADFS Web Agent tab, in Federation Service URL, type the Uniform Resource Locator (URL) of the federation server in the resource partner organization, and then click OK.

   For example, if the federation server in the resource partner organization is named fedsrv1 and it is located in the treyresearch.net forest, type https://fedsrv1.treyresearch.net/adfs/fs/FederationServerService.asmx.

   Note

   The Federation Service URL in Active Directory Federation Services (ADFS) defines the URL that is used for all Web sites and Windows NT token–based applications on a Web server where the ADFS Web Agent is enabled.

4. Double-click Web Sites, right-click the Web site or virtual directory where the application will reside, and then click Properties.

5. On the ADFS Web Agent tab, select the Enable Active Directory Federation Services Web Agent check box.

   Note

   This action will enable anonymous access to this Web site.

6. Modify the following values as necessary, and then click OK.

   • Cookie path

   • Cookie domain

   • Return URL

   For detailed information about each of these settings, see Review the role of ADFS Web Agents.