I try up adfs:
Set certificate center on PDC(as rules)
--App certificate center
--Creat root certificate
--create template autorequest, add permission for computers
--publish template in services AD cert link
Set ADFS role step-by-step
-- as in link
- powerShell# Install-WindowsFeature adfs-federation -IncludeManagementTools
- powerShell# add-kdsrootkey -effectiveImmediately
- chech by link https://adfs.ksi.local/adfs/ls/idpinitiatedsignon.aspx (problems)
- Get-AdfsProperties
- Set-AdfsProperties -EnableIdpInitiatedSignonPage $true
- iisreset