A client would like to set up SSO from their domain to my hosted website. They have suggested using ADFS. I have a single server hosting ADUC, ADFS and IIS in, let's say, fs.mydomain.com which is hosting a website which needs to keep track of logged in users. The client will be logging in from an internet connected PC on a different domain. ADFS Claims X-Ray says that it is working properly. Their federationmetadata.xml points to Office365.
All of the videos, technotes, etc. I have seen stop at ADFS is working. Or they are how to connect your PC to their ADFS. I can't seem to find anything on configuring IIS. I thus have a couple of questions.
How do I configure ADFS for their domain? I added the federationdata.xml to Relying Trust and it shows up as an option to log into from idpinitiated.htm. When I select it and try to log in, it asks for my Microsoft365 login. It tries to process it, and seems to get almost there but eventually throws an error. SOmething like "File not found in folder".
How do I configure the website/IIS to look to ADFS for signon?
Then get ADFS to redirect back to the website?