We successfully enabled ADFS authentication for OWA and ECP.
While this is what we want for the clients, we now have the problem that the local ECP of any exchange server cant be authenticated anymore: https://localhost/ecp/?ExchClientVer=15 or https://servername/ecp/?ExchClientVer=15
This leads to an ADFS error page because the cert is not valid.
We have to fall back to https://owa.ist.ac.at/ecp/?ExchClientVer=15
The problem with this is, for some tasks i need to know on which server I work. For instance to check if our OWA theme still works after a server upgrade.
So i need to make https://localhost/ecp/?ExchClientVer=15 work again locally on the servers. How I can exclude these servers or the admin users from ADFS authentication? I can apply the authentication in ADFS to groups, but now they are applied to everyone and I would love if I dont have to mess with the groups but somehow could just exclude the servers in a way that does not affect the whole infrastructure.