[{"id":"ci_ed652b7c8511a15340591374967db6b9bfc2271e983b044ece1fb1d3d8cfabe3","title":"Version Information and PDF Download","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/version-information-and-pdf-download","children":[]},{"id":"ci_201ae5a7f5a45578ba69afb16847f7c7603a98aaa56d59f2d37db438b7ac08bc","title":"Introduction","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/introduction","children":[{"id":"ci_251cc2e58d459227eadefbd41e0f92dd938d4e6d001d7bc4edbf5a0993efd1d0","title":"About This Guide","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/about-this-guide","children":[{"id":"ci_dc2a6dd25ae1b13c14f77cdef584d45f7568c86ea6b5bc03068121c07e286dd8","title":"Target Audience for This Guide","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/target-audience-for-this-guide","children":[]},{"id":"ci_ea36d2e7704d46e28584bdda8b588e871256876c8166cae1ae0516d0083e3fb8","title":"Document Conventions","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/document-conventions","children":[]},{"id":"ci_7a71096563f5c9aecce9b04220df63daf60ac38ca8e1d2ea0cefc701daedcba0","title":"Abbreviations","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/abbreviations","children":[]}]}]},{"id":"ci_4c4c7c609ec41f9123bf5717e41e6c327bfae378f95efb74dd3adb4f18353565","title":"Overview","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/overview","children":[{"id":"ci_2c2365f8c4c86f463ca6c261e606c06f8eef9a639ed157541c30f96939e0e5ec","title":"Microsoft AD FS","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/microsoft-ad-fs","children":[]},{"id":"ci_71e44cd41415057344489959eb4cbdbafeff7dd8dbdf3166f95eb4bd73e78539","title":"Utimaco CryptoServer HSM","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/utimaco-cryptoserver-hsm","children":[]}]},{"id":"ci_1ffbf61b4c60e9aac36aaea423daad05ed5c365095643a360e87f0b9b4ccf826","title":"Integration Requirements and Prerequisites","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/integration-requirements-and-prerequisites","children":[{"id":"ci_f93414879ea6823309ab2cf11bbedaea2968d52707e299379cce8fbcfd90b990","title":"Tested Versions","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/tested-versions","children":[]},{"id":"ci_a2b368b7f3fdc96f107a8303ca4ddbd55f87f376783c85225b28f1f7b3d9440c","title":"Software Requirements","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/software-requirements","children":[]},{"id":"ci_d3f8d050fd0ae07651b085afa1290042baf8004a3ab36b3551dd3eeda0565025","title":"Hardware Requirements","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/hardware-requirements","children":[]},{"id":"ci_c4fea0c8f92d45f4ac5c33e0a6cae7f277b737f86553cf018f26cd9b72b2b2a9","title":"Prerequisites","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/prerequisites","children":[]}]},{"id":"ci_1bd3efa123a2822b6a68231fd8523a3d4210d843088eec3a4ec9114c2345d084","title":"Configuring the Utimaco CSP-CNG Provider","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/configuring-the-utimaco-csp-cng-provider","children":[{"id":"ci_30b095f8577e4b3d694e00058603e7364917e7d69e7a454b551b8a3f5d661fbd","title":"Introduction and Prerequisites","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/introduction-and-prerequisites","children":[]},{"id":"ci_2c299ac8fa03bc58cc89150104285559c60effaafe46f1e6dda8eaee25085c81","title":"Creating HSM Users","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/creating-hsm-users","children":[{"id":"ci_438dd345bb9e1f971fe0b6c6a1439cfa0ea32714c1cf1a1eb33fc6f6ce0a31e8","title":"Creating a Key Manager User","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/creating-a-key-manager-user","children":[]},{"id":"ci_d01e15c766ebb297a2a3712420c0ca87fcded831ff158052bb98c99a9aa1efe9","title":"Creating a Crypto User","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/creating-a-crypto-user","children":[]}]},{"id":"ci_cb62fbb949352d6f3f8e1141dec1bdcdcfdb0f8853741ac8c53ae0c7ab819cc3","title":"Setting up the CSP/CNG Provider","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/setting-up-the-csp-cng-provider","children":[{"id":"ci_5c74738c2b69a49d0cf812f872a24cd3f57485ba6bdd61219688c63469a3199e","title":"Testing Connection","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/testing-connection","children":[]}]}]},{"id":"ci_3a9b856e7758d3a2666c00aeccba1debebd5c225cb8d33ea129fa37959f4fd4d","title":"Integrating Microsoft AD FS on Windows 2019 Server","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/integrating-microsoft-ad-fs-on-windows-2019-server","children":[{"id":"ci_02845b084c7cfff5257f94dc9f911b850a2c1a660c0807263036eacffdfed38e","title":"Create Certificate Template for SSL Certificate, Token Signing Certificate and Token Decryption Certificate for AD FS","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/create-certificate-template-for-ssl-certificate-token-signing-certificate-and-token-decryption-certificate-for-ad-fs","children":[]},{"id":"ci_6549074c2dba57fc0027d957297e8878cb15ea38605f7afe3c720a5910211811","title":"Issue the Created AD FS Certificate Template","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/issue-the-created-ad-fs-certificate-template","children":[]},{"id":"ci_681eca86cee0289d1b30070303983f2a7b51a1340a61893a586f17fca1dc47df","title":"Generate SSL Certificate, Token Signing Certificate and Token Decryption Certificate","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/generate-ssl-certificate-token-signing-certificate-and-token-decryption-certificate","children":[]},{"id":"ci_11fc2950df75ec6a349648108833e28dedd8aa00d3d6351cf5e15839e72dca78","title":"Provide Full User Permission for the Private Keys of the Certificates to Generated Certificate","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/provide-full-user-permission-for-the-private-keys-of-the-certificates-to-generated-certificate","children":[]},{"id":"ci_a184f8585b10b064a3e948baba7151fcc6e3108582fbd7999ac4db57c760f128","title":"Install AD FS","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/install-ad-fs","children":[]},{"id":"ci_157fa801a9ac7d706b0d103496159985d1af3df2313c4c7dac428b358b2a64ed","title":"Create a GMSA Account","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/create-a-gmsa-account","children":[]},{"id":"ci_98db314f0a542fd2e01d456ee94c4d4c2108fd97487bf678a85ed0f548292d38","title":"Configure AD FS Service","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/configure-ad-fs-service","children":[]},{"id":"ci_2fcb00d0fa803f4e1874c6f7db54a9e8e1ea1e022b81ec81403117d78f16fa55","title":"Add Token Certificate from AD FS Manager","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/add-token-certificate-from-ad-fs-manager","children":[{"id":"ci_25562b6f39947c60482c852881625e23a91aae96e37b0ba495b937635842e665","title":"Add a Token Signing Certificate","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/add-a-token-signing-certificate","children":[]},{"id":"ci_61a953bec87193d1be5ef8b82d39bd26e6d4fc64912350454c88ecbafc7540a8","title":"Set Token Signing Certificate as Primary","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/set-token-signing-certificate-as-primary","children":[]},{"id":"ci_b57275c63692138cba5569bd97b67649ed9abd629941f28534cb91bcd55276fd","title":"Add Token Decryption Certificate","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/add-token-decryption-certificate","children":[]},{"id":"ci_e612e61a359cf83c6cea3a32c1ed26b1b3000c6a68b1bab13717e54ec3ce018f","title":"Set Token Decryption Certificate as Primary","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/set-token-decryption-certificate-as-primary","children":[]}]},{"id":"ci_17b37243833f24f96319aaf3167d13a832148025195982b37c3703cc2f3f668b","title":"Verify the AD FS Server is Operational and Accessible Through the URL","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/verify-the-ad-fs-server-is-operational-and-accessible-through-the-url","children":[{"id":"ci_93f40ca10426cc4872d924cdc01759116c0d7f6351a63c555d0ba60475d41081","title":"Verify the SSO Operation of AD FS Server","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/verify-the-sso-operation-of-ad-fs-server","children":[]}]}]},{"id":"ci_15e9c47439c2852c9d7a69ed27494f400fe1fe4cdb6b4a89d526c7abc48d6837","title":"Troubleshooting","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/troubleshooting","children":[]},{"id":"ci_d5b45b5e063826feb6cac93f0fe9b856739f54b8575ecac2cbce3c7d3e351b80","title":"Further Information","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/further-information","children":[]},{"id":"ci_835f0f3d49a134335edea7fb047601599d0378a4d778f663ecd1de8f7dc661f5","title":"References","path":"/microsoft-active-directory-federation-service-ad-fs-and-cryptoserver-hsm/1.0.0/references","children":[]}]