A
Antuanfff
Hi
We have a deployment with ADFS 3.0 in forest A. We have 2 more forest B and C. We want to use ADFS on forest A to authenticate users from forest B and C, for example in Office 365. Everything is working fine, we have a trust relationship between A and B, and another trust between A and C. The users are able to log in using their UPN (we have additional suffixes)
The problem is in forest B. There are 2 UPN suffixex. Let's say contoso.com and col.contoso.com. Users with both suffixes are able to log in. But users with UPN @col.contoso.com are not able to change their password using the "updatepassword" feature from ADFS. They must type the user in the format contoso\user., then they can change the password I checked the logs in ADFS, and an event ID 407 is created, saying "user not found".
Password change failed for following user:
Additional Data
User:
test.flylevel3@col.contoso.com
Device Certificate:
Server on which password change was attempted:
Error details:
UserNotFound
Continue reading...
We have a deployment with ADFS 3.0 in forest A. We have 2 more forest B and C. We want to use ADFS on forest A to authenticate users from forest B and C, for example in Office 365. Everything is working fine, we have a trust relationship between A and B, and another trust between A and C. The users are able to log in using their UPN (we have additional suffixes)
The problem is in forest B. There are 2 UPN suffixex. Let's say contoso.com and col.contoso.com. Users with both suffixes are able to log in. But users with UPN @col.contoso.com are not able to change their password using the "updatepassword" feature from ADFS. They must type the user in the format contoso\user., then they can change the password I checked the logs in ADFS, and an event ID 407 is created, saying "user not found".
Password change failed for following user:
Additional Data
User:
test.flylevel3@col.contoso.com
Device Certificate:
Server on which password change was attempted:
Error details:
UserNotFound
Continue reading...