Web Agent for Windows NT Token-Based Applications

Applies To: Windows Server 2008

The Windows token-based agent is used on a Web server that hosts a Windows NT token-based application. The agent supports conversion from an Active Directory Federation Services (AD FS) security token to an impersonation-level Windows NT access token. A Windows NT token-based application is an application that uses Windows-based authorization mechanisms.


The following is a list of all aspects that are part of this managed entity:

Name Description

Windows NT Token-Based Application - Miscellaneous

Monitor miscellaneous authentication requests that are made to the Windows token-based agent.

Windows NT Token-Based Application Auditing

Audit events are written to the audit log during the auditing process. The Windows token-based agent records Success and Failure audits, such as the state of the AD FS Web Agent Authentication Service.

Windows NT Token-Based Application Configuration

Web Agent for Windows NT token-based application configuration contains information about the AD FS Web Agent Authentication Service, creation of Windows NT tokens, and Windows token-based agent authentication requests.

Windows NT Token-Based Application Logging

You can use Active Directory Federation Services (AD FS) log files to troubleshoot issues with the Windows token-based agent. The creation and updating of AD FS log files are monitored here.

Windows NT Token-Based Application Malformed Requests

Web Agent for Windows NT Token-Based Applications Malformed Requests logs token requests, session cookies, and sign-in requests that are associated with the Windows token-based agent. Malformed Requests also provides information about protocol requests that are made to the AD FS Web Agent and client cookies, and it records any sign-on issues.

Active Directory Federation Services