question

FernandoSousa-2846 avatar image
0 Votes"
FernandoSousa-2846 asked ·

2 ADFS Farms 1 SQL Server

I'm currently planning on rebuilding my ADFS farm from scratch and point it to a new domain (sts.example2.com)
My current ADFS Farm (sts.example1.com) uses SQL server for the configuration and artifact databases.
The configuration database will not be an issue (i think) as i will install it on Windows Server 2019 and ADFS should create the default database with the prefix V4 (current one on Windows Server 2016, prefix V3 for the database).
My question is related to the Artifact resolution database. As i only have access to one SQL Server instance would there be any issues with the farms if they share the same Artifact resolution database? From what i read there is no way to change the name of the DB during the initial setup. Can i setup it up using the default and then point it to a different database?

Cheers and thanks.

adfs
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

piaudonn avatar image
0 Votes"
piaudonn answered ·

The artifact database is storing the information used for the smart lockout policy. I don't think that's a good idea to share it at all.

Although you could change those artifact database names to accommodate, I would just go to not use SQL instead :)

WID can handle up to 30 nodes in the farm.
WID cannot handle artifact resolution which is a feature which is extremely rarely used, so not a problem.
WID cannot do Token Replay Detection, but that feature matters only if you have more than 1 claim provider trust. Most of deployments just use Active Directory as a claim provider, and in that situation, there is no Token Replay Detection anyhow.


·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.