Microsoft Office Tutorials and References
In Depth Information
Converting the domain from standard authentication to identity federation
5. Enter the following command, which will attempt to connect and authenticate to an
Office 365 tenant using the logon credentials you stored in $cred :
Connect-MsolService -Credential $cred
6. Lastly, enter the following command to convert the domain from
standard authentication to identity federation in Office 365. Note that the
-SupportMultipleDomain parameter is optional. Use it only if you will be federating
other top-level domains (TLDs) with this Office 365 tenant.
Convert-MsolDomainToFederated -DomainName <domain name> -SupportMultipleDomain
If you do not receive any Windows PowerShell error messages, which are usually red
in color, then your domain now supports identity federation. We will verify this in the
“Verifying a successful conversion of a domain” section.
The AD FS server is installed on Windows Server 2008 SP2 or on a
remote Windows 7 workstation
1. Download and install the Windows Azure Active Directory Module for Windows
PowerShell cmdlets, formerly known as the Microsoft Online Services Module for
Windows PowerShell cmdlets. The 32-bit version of the Windows Azure Active
Directory Module for Windows PowerShell cmdlets is located at http://go.microsoft.
2. Install the Windows Azure Active Directory Module on a remote server running
Windows 2008 R2 or on a Windows 7 workstation.
3. On your AD FS server, right-click the shortcut to Windows PowerShell and run it as an
administrator. Next, enter the following command:
The Enable–PSRemoting command creates a Windows Remote Management
(WinRM) listener service on all IP addresses on the server using the HTTP protocol
through port 5985. It also creates the required Windows Firewall rules to allow the
Windows Remote Management application to go through port 5985. This allows a
remote workstation or server to execute remote Windows PowerShell commands
against this server.
4. To confirm that the Windows Remote Management service has been configured,
execute the following command to see the configuration details:
winrm enumerate winrm/config/listener