Modify Internal ADFS DNS Settings

Monday 28th October 2019 09:00 AM

Purpose: This is in response to TIC-15191. On-prem devices are unable to perform a Azure AD Hybrid Join or initiate an automatic OneDrive for Business silent logon. After working with Microsoft it was determined that 2 endpoints were disabled on the WAPs. Microsoft recommends that we reconfigure internal DNS to point directly to the ADFS Federation Service nodes instead of the non-domain joined application proxies. 

Impact: MEDIUM

Affected: ADFS, Hybrid Azure AD Join, Office365

Posted On: Monday 21st October 2019 12:47 PM