Latest posts by Dan Patrascu-Baba (see all)
- ADFS in multi forest environments - 20/10/2017
- #Build 2017 – some exciting things - 10/05/2017
- Testing Azure AD per app MFA and conditional access based on network location - 29/07/2016
I’ve recently built a new lab for my Office 365 tenant including Azure AD Sync and ADFS running on Windows Server 2012 R2 machines. Everything worked as expected until I installed some updates on the ADFS server and restarted it. I noticed right away that the Active Directory Federation Service did not start at all. When I checked in services.msc I noticed that it is in a “starting” state. I waited a lot, but it remained the same.
I tried t stop it and to restart it manually. However, when I did this I received an error message pointing out that the service account may be short of some necessary permissions. This seemed very strange to me, since it worked perfectly before the reboot. As a further background, I was using an gMSA account as ADFS service account. Continue reading