Updates for Active Directory Federation Services (AD FS)
Updates for Active Directory Federation Services (AD FS)
Updates have been released for Active Directory Federation Services (AD FS) 2.0, AD FS in Windows Server 2012 and AD FS in Windows Server 2012 R2. This following table captures those updates that are available for download.
Updates for AD FS 2.0 and 2.1
The following table lists the updates that have been released for AD FS 2.0 and 2.1
KB # |
Description |
Date Released |
Applies To: |
Authentication through proxy fails in Windows Server 2012 or Windows Server 2008 R2 SP1 |
September 2015 |
AD FS 2.0 / 2.1 |
|
MS15-062: Vulnerability in Active Directory federation services could allow elevation of privilege |
June 2015 |
AD FS 2.0 / 2.1 |
|
MS14-077: Vulnerability in Active Directory Federation Services could allow information disclosure: April 14, 2015 |
November 2014 |
AD FS 2.0 / 2.1 |
|
Memory usage of AD FS federation server keeps increasing when many users log on a web application in Windows Server 2012 |
July 2014 |
AD FS 2.1 |
|
The relying party trust in AD FS is stopped when a request is made to AD FS for a delegated token |
May 2014 |
AD FS 2.1 |
|
ADFS SQL farm deployment fails if you do not have SQL permissions |
October 2014 |
AD FS 2.1 |
|
Update is available to fix several issues after you install security update 2843638 on an AD FS server |
November 2013 September 2014 |
AD FS 2.0 / 2.1 |
|
Update enables you to use one certificate for multiple Relying Party Trusts in an AD FS 2.1 farm |
October 2013 |
AD FS 2.1 |
|
FIX: An error occurs when you use a third-party CSP and HSM and then configure a claims provider trust in Update Rollup 3 for AD FS 2.0 on Windows Server 2008 R2 Service Pack 1 |
September 2013 |
AD FS 2.0 |
|
A comma in the subject name of an encryption certificate causes an exception in Windows Server 2008 R2 SP1 |
August 2013 |
AD FS 2.0 |
|
[Security] Vulnerability in Active Directory Federation Services Could Allow Information Disclosure |
November 2013 |
AD FS 2.1 |
|
MS13-066: Description of the security update for Active Directory Federation Services 2.0: August 13, 2013 |
August 2013 |
AD FS 2.0 |
|
Federationmetadata.xml file does not contain the MEX endpoint information for the WS-Trust and WS-Federation endpoints in Windows Server 2012 |
May 2013 |
AD FS 2.1 |
|
Description of Update Rollup 3 for Active Directory Federation Services (AD FS) 2.0 |
March 2013 |
AD FS 2.0 |
Updates for AD FS and WAP in Windows Server 2012 R2
Updates have been released for Active Directory Federation Services (AD FS) in Windows Server 2012 R2. There are update rollup releases as well as individual hotfix releases. The following provides a timeline view on those releases and the issues that have been fixed.
KB # |
Description |
Date Released |
AD FS logs don't contain client IP address for account lockout scenarios in Windows Server 2012 R2 |
February 2016 |
|
MS16-020: Security update for Active Directory Federation Services to address denial of service: February 9, 2016 |
February 2016 |
|
Can't access applications when device authentication is enabled in Windows Server 2012 R2-based AD FS server |
October 2015 |
|
Page loads repeatedly and authentication fails when users use MFA in Windows Server 2012 R2 AD FS |
August 2015 |
|
AD FS does not call OnError when MFA adapter throws an exception in Windows Server 2012 R2 |
July 2015 |
|
Trust relationships are lost on secondary AD FS server after you add or remove claims provider in Windows Server 2012 R2 |
July 2015 |
|
Home Realm Discovering not working correctly for Non-claims Aware Relying Party Trust |
June 2015 |
|
Update adds support for compound ID claims in AD FS tokens in Windows Server 2012 R2 |
May 2015 |
|
MS15-040: Vulnerability in Active Directory Federation Services could allow information disclosure |
April 2015 |
|
"HTTP 400 - Bad Request" error when you open a shared mailbox through WAP in Windows Server 2012 R2 |
March 2015 |
|
AD FS token replay protection for Web Application Proxy authentication tokens in Windows Server 2012 R2 |
March 2015 |
|
Hotfix for update password feature so that users are not required to use registered device in Windows Server 2012 R2 |
January 2015 |
|
AD FS cannot process SAML response in Windows Server 2012 R2 |
January 2015 |
|
Operation fails when you try to save an Office file through Web Application Proxy in Windows Server 2012 R2 |
January 2015 |
|
You are not prompted for username again when you use an incorrect username to log on to Windows Server 2012 R2 |
January 2015 |
|
You are prompted for authentication when you run a web application in Windows Server 2012 R2 AD FS |
January 2015 |
|
Time-out failures after initial deployment of Device Registration service in Windows Server 2012 R2 |
January 2015 |
|
You are prompted for a username and password two times when you access Windows Server 2012 R2 AD FS server from intranet |
January 2015 |
|
Windows Server 2012 R2 Update Roll-up |
December 2014 |
|
Windows Server 2012 R2 Update Roll-up |
November 2014 |
|
Windows Server 2012 R2 Update Roll-up |
August 2014 |
|
Windows Server 2012 R2 Update Roll-up |
July 2014 |
|
Windows Server 2012 R2 Update Roll-up |
June 2014 |
|
Windows Server 2012 R2 Update Roll-up |
May 2014 |
|
Windows Server 2012 R2 Update Roll-up |
April 2014 |
Updates for AD FS and WAP in Windows Server 2016 Technical Preview
Updates have been released for Active Directory Federation Services (AD FS) in Windows Server 2016 Technical Preview. There are update rollup releases as well as individual hotfix releases. The following provides a timeline view on those releases and the issues that have been fixed.
KB # |
Description |
Date Released |
Cumulative update for Windows 10 Version 1511: February 9, 2016 |
February 2016 |