Does ADFS work with SSL offloading? Ive only seen ADFS with SSL certificates on the web servers, and we know it requires SSL. But does this requirement mean it must be all the way through to the servers?
Does ADFS work with SSL offloading
adfs
adfs
Does ADFS work with SSL offloading? Ive only seen ADFS with SSL certificates on the web servers, and we know it requires SSL. But does this requirement mean it must be all the way through to the servers?
Best Answer
Yes, there is no reason at all that you could not offload SSL to an encrypting reverse proxy or similar. It is effectively an HTTP service like any other, and when you register it, it should be possible to cause it to listen only on http.
I don't believe it requires SSL, though implementing it without SSL would be extremely foolish.
That said, you do still need the token signing and encrypting/decrypting certificates, and you cannot offload that.