Set Up Active Directory Federation Services (ADFS) for Console SAML

Register a new relying party trust using Console SAML metadata.

Before registering a new relying party trust, configure a Console SAML configuration through the Web UI (Server > Authentication > SAML Integration). For more information, see Creating a SAML Configuration in Faspex.
  1. Save the SAML metadata file:
    1. In Console, go to Server > Authentication > SAML Integration and click the Metadata link.
    2. Save the page as an XML (.xml) file.
  2. On the server hosting AD FS, launch the ADFS Management Console.
  3. Add a new relationship (click the plus next to Trust Relationships).
  4. Right click on Relying Party Trust and select Add Relying Party Trust
  5. On the Add Relying Party Trust Wizard window, click Start.
  6. Choose Import data about the relying party from a file.
  7. Browse to the location of your metadata file, select it, and click, Open.
  8. Click Next and choose a unique display name.
  9. Choose Permit all users to access this relying party.
  10. Click Next until you see the Open the Edit Claim Rules dialog for this relying party trust when the wizard closes. Clear that option.
  11. Close the window.
  12. Right click on the newly created relying party and select Properties > Advanced.
  13. Change the Secure hash algorithm to SHA-256 and click OK.
  14. Test the configuration by logging in to Console through the ADFS SAML configuration.