Once you got the certificate from public DNS provider. Once procured, complete the certificate request. Copy the request file and provide to your SSL certificate provider and procure the certificate. Select Key Size and checkbox for “Make Private Key exportable” and click on Apply and hit OK.Ĭlick Finish. Click Subject Tabįrom the drop down menu, select Common name and provide the value and click on Add button Right click on Personal –> All Tasks –> Advanced Options –> Create Custom RequestĬertificate enrollment wizard will start, click on NextĮnter friendly name of your certificate. To create a SSL certificate request, Go to MMC ConsoleĬlick on Add/Remove Snap-in and Select Certificate and click on Add button ****I’ve procured my SSL certificate from GoDaddy for this lab**** Create SSL Certificate Request for AD FS 3.0īefore we start installing and configuring AD FS 3.0 for Single Sign on, Let’s first create the SSL certificate request to procure a SSL certificate from public authority like GoDaddy. Once you’re done with your planning & preparation for single sign on, move on to 2nd Step and deploy your ADFS servers. To activate Single Sign on, Go to Office 365 portal –> Active Users –> Click on Set Up as shown below ****Before we start this step i assume you’ve already setup your office 365 tenant and configured your custom domain in office 365****** To activate single sign on in office 365 follow the steps as shown below. Activate Single Sign onīefore we start installing ADFS 3.0, we need to first enable Single Sign on in office 365. Let’s get started with the lab and setup Single Sign on with office 365.
1 x windows 2012 R2 servers in DMZ for Web Application Proxy.1 x Windows 2012 R2 servers for ADFS 3.0 in production zone.2 x Windows Server 2012 R2 Domain controller (Domain Name: ).Lab DetailsĬurrently i’ve the following infrastructure in my lab for setting up Single Sign on with Office 365. You can add UPN Suffix to your forest by following the instructions provided on Microsoft Knowledge Base. If you have a internal domain name which is not routeable to the internet then you will have to add a custom UPN suffix that matches external name space. AAD Sync tool to synchronize identities with Office 365.SSL Certificate from public certificate authorities like GoDaddy.
You need internet route-able domain name to setup SSO.
You can also download the complete guide on Setting up Single Sign on with office 365 from Technet Before we start setting up Single Sign on with office 365 using ADFS 3.0, let’s review few important per-requisites for SSO. This article will help you setting up Single Sign on with office 365 using ADFS 3.0. Single Sign on with office 365 is mostly used by organization to provide seamless experience to their end users.