Hi there. Can someone explain a "concept of AD FS".
We have Sharepoint in DMZ and would like to configure it to talk with AD.
We see this could be done thru ADFS server. Now if we look the TechNet articles regarding deployin AD FS in environment we see that you put AD FS server in domain, enable federation service role, but after that you need to deploy one more server in domain who has websrv role. Is that necessary to put on seperated server?
We tought that you need 1 ADFS server in LAN/domain and 1 Proxy in DMZ and that would be it, or we missunderstood the concept.
with best regards
bostjanc