Common ADFS Commands

common-adfs-cmd.md

Common ADFS Commands

List LocalMachine Certificates

dir Cert:\LocalMachine\My

Install WebApplicationProxy Certificate

Install-WebApplicationProxy -CertificateThumbprint '[THUMBPRINT]' -FederationServiceName '*.[DOMAIN].[TLD]'

Configure RPT Without Revocation Checks

Set-AdfsRelyingPartyTrust -TargetIdentifier https://[URL]/to/[METADATA] -EncryptionCertificateRevocationCheck None
Set-AdfsRelyingPartyTrust -TargetIdentifier https://[URL]/to/[METADATA] -SigningCertificateRevocationCheck None

Set ADFS Certificate

Set-AdfsSslCertificate -Thumbprint [THUMBPRINT]

Set ADFS Proxy Certificate

Set-WebApplicationProxySslCertificate -Thumbprint [THUMBPRINT]

Remove ADFS Certificates

Remove-ADFSCertificate -CertificateType token-signing -Thumbprint [THUMBPRINT]
Remove-ADFSCertificate -CertificateType token-decrypting -Thumbprint [THUMBPRINT]

Get Current ADFS Certificate Info

Get-AdfsCertificate –CertificateType token-signing
Get-AdfsCertificate –CertificateType token-decrypting

Update ADFS Certificates

Update-ADFSCertificate –CertificateType token-signing
Update-ADFSCertificate –CertificateType token-decrypting