移轉 AD FS 2.0 WID 陣列Migrate an AD FS 2.0 WID farm

本文件會提供詳細的資訊移轉 AD FS 2.0 Windows 內部資料庫 (WID) 發電廠到 Windows Server 2012。This document provides detailed information on migrating an AD FS 2.0 Windows Internal Database (WID) farm to Windows Server 2012.

移轉 AD FS WID 陣列Migrate an AD FS WID farm

若要將 WID 發電廠移轉到 Windows Server 2012,執行下列程序:To migrate a WID farm to Windows Server 2012, perform the following procedure:

  1. 針對每個節點(伺服器)WID 陣列中,檢視,並執行中的程序準備移轉 WID 發電廠For every node (server) in the WID farm, review and perform the procedures in Prepare to migrate a WID farm.

  2. 移除負載平衡器任何非主要節點。Remove any non-primary nodes from the load balancer.

  3. 升級此伺服器從 Windows Server 2008 R2 或 Windows Server 2008 到 Windows Server 2012 的作業系統。Upgrade of the operating system on this server from Windows Server 2008 R2 or Windows Server 2008 to Windows Server 2012. 如需詳細資訊,請查看安裝 Windows Server 2012For more information, see Installing Windows Server 2012.

重要

作業系統升級的結果,在此伺服器上的 AD FS 設定將會遺失,並且移除 AD FS 2.0 伺服器角色。As the result of the operating system upgrade, the AD FS configuration on this server is lost and the AD FS 2.0 server role is removed. Windows Server 2012 AD FS 伺服器角色已安裝改為,但未設定。The Windows Server 2012 AD FS server role is installed instead, but it is not configured. 您必須建立原始 AD FS 設定,並還原剩餘 AD FS 設定完成聯盟伺服器移轉。You must create the original AD FS configuration and restore the remaining AD FS settings to complete the federation server migration.

  1. 在此伺服器上建立的原始 AD FS 設定。Create the original AD FS configuration on this server.

您可以建立原始設定,AD FS 使用AD FS 聯盟伺服器設定精靈來新增至 WID 陣列聯盟伺服器。You can create the original AD FS configuration by using the AD FS Federation Server Configuration Wizard to add a federation server to a WID farm. 如需詳細資訊,請查看新增聯盟伺服器聯盟伺服器陣列到For more information, see Add a Federation Server to a Federation Server Farm.

注意

當您到達指定主要聯盟伺服器及服務 Account頁面中AD FS 聯盟伺服器設定精靈、輸入 WID 陣列的主要聯盟伺服器的名稱,請務必輸入您錄製準備 AD FS 移轉作業時的服務 account 資訊。When you reach the Specify the Primary Federation Server and a Service Account page in the AD FS Federation Server Configuration Wizard, enter the name of the primary federation server of the WID farm and be sure to enter the service account information that you recorded while preparing for the AD FS migration. 如需詳細資訊,請查看準備 2.0 聯盟伺服器移轉 AD FSFor more information, see Prepare to Migrate the AD FS 2.0 Federation Server.

當您到達同盟服務名稱指定頁面上,請務必選取相同 SSL 憑證您記錄在 [準備移轉 WID 發電廠」準備 2.0 聯盟伺服器移轉 AD FSWhen you reach the Specify the Federation Service Name page, be sure to select the same SSL certificate you recorded in the “Prepare to migrate a WID farm” in Prepare to Migrate the AD FS 2.0 Federation Server.

  1. 更新您的 AD FS 網頁此伺服器上。Update your AD FS webpages on this server. 如果您的移轉準備時備份您自訂 AD FS 網頁,您需要使用覆寫預設 AD FS 網頁中的預設所建立的備份資料%systemdrive%\inetpub\adfs\ls目錄根據 AD FS 設定 Windows Server 2012 上。If you backed up your customized AD FS webpages while preparing for the migration, you need to use your backup data to overwrite the default AD FS webpages that were created by default in the %systemdrive%\inetpub\adfs\ls directory as a result of the AD FS configuration on Windows Server 2012.

  2. 新增您只是升級到 Windows Server 2012 負載平衡器伺服器。Add the server that you just upgraded to Windows Server 2012 to the load balancer.

  3. 重複執行步驟 1 到 6 WID 發電廠您在其他次要伺服器。Repeat steps 1 through 6 for the remaining secondary servers in your WID farm.

  4. 促銷其中一個做為主要伺服器 WID 陣列中的升級次要伺服器。Promote one of the upgraded secondary servers to be the primary server in your WID farm. 若要這樣做,請打開 Windows PowerShell 並執行下列命令:PSH:> Set-AdfsSyncProperties –Role PrimaryComputerTo do this, open Windows PowerShell and run the following command: PSH:> Set-AdfsSyncProperties –Role PrimaryComputer.

  5. 移除負載平衡器原始的主要您 WID 發電廠的伺服器。Remove the original primary server of your WID farm from the load balancer.

  6. 降級原始 WID 陣列次要伺服器是使用 Windows PowerShell 中的主要伺服器。Demote the original primary server in your WID farm to be a secondary server by using Windows PowerShell. 打開 Windows PowerShell 並執行下列命令新增至您的 Windows PowerShell 工作階段的 AD FS cmdlet: PSH:>add-pssnapin “Microsoft.adfs.powershell”Open Windows PowerShell and run the following command to add the AD FS cmdlets to your Windows PowerShell session: PSH:>add-pssnapin “Microsoft.adfs.powershell”. 然後執行下列命令,將會次要伺服器原始主要伺服器降級:PSH:> Set-AdfsSyncProperties – Role SecondaryComputer –PrimaryComputerName <FQDN of the Primary Federation Server>Then run the following command to demote the original primary server to be a secondary server: PSH:> Set-AdfsSyncProperties – Role SecondaryComputer –PrimaryComputerName <FQDN of the Primary Federation Server>.

  7. 從 Windows Server 2008 R2 或 Windows Server 2008 WID 陣列到 Windows Server 2012 中升級的作業系統上此最後一個節點(伺服器)。Upgrade of the operating system on this last node (server) in your WID farm from Windows Server 2008 R2 or Windows Server 2008 to Windows Server 2012. 如需詳細資訊,請查看安裝 Windows Server 2012For more information, see Installing Windows Server 2012.

重要

升級作業系統的結果,在此伺服器上的 AD FS 設定將會遺失,並且移除 AD FS 2.0 伺服器角色。As the result of upgrading the operating system, the AD FS configuration on this server is lost and the AD FS 2.0 server role is removed. Windows Server 2012 AD FS 伺服器角色已安裝改為,但未設定。The Windows Server 2012 AD FS server role is installed instead, but it is not configured. 您必須手動建立原始設定,AD FS,並還原剩餘 AD FS 設定完成聯盟伺服器移轉。You must manually create the original AD FS configuration and restore the remaining AD FS settings to complete the federation server migration.

  1. 建立您的 WID 陣列此最後一個節點(伺服器)原始設定,AD FS。Create the original AD FS configuration on this last node (server) in your WID farm.

您可以建立原始設定,AD FS 使用AD FS 聯盟伺服器設定精靈來新增至 WID 陣列聯盟伺服器。You can create the original AD FS configuration by using the AD FS Federation Server Configuration Wizard to add a federation server to a WID farm. 如需詳細資訊,請查看新增聯盟伺服器聯盟伺服器陣列到For more information, see Add a Federation Server to a Federation Server Farm.

注意

當您到達指定主要聯盟伺服器及服務 Account頁面中AD FS 聯盟伺服器設定精靈,輸入您錄製準備 AD FS 移轉作業時的服務 account 資訊。When you reach the Specify the Primary Federation server and a Service Account page in the AD FS Federation Server Configuration Wizard, enter the service account information that you recorded while preparing for the AD FS migration. 如需詳細資訊,請查看準備 2.0 聯盟伺服器移轉 AD FSFor more information, see Prepare to Migrate the AD FS 2.0 Federation Server.

當您到達同盟服務名稱指定頁面上,請務必選取相同 SSL 憑證您記錄在準備 2.0 聯盟伺服器移轉 AD FSWhen you reach the Specify the Federation Service Name page, be sure to select the same SSL certificate you recorded in Prepare to Migrate the AD FS 2.0 Federation Server.

  1. 更新您的 AD FS 網頁此 WID 陣列中的最後一個伺服器上。Update your AD FS webpages on this last server in your WID farm. 如果您的移轉準備時備份您自訂 AD FS 網頁,使用您備份的資料覆寫預設 AD FS 網頁中的預設所建立的%systemdrive%\inetpub\adfs\ls目錄根據 AD FS 設定 Windows Server 2012 上。If you backed up your customized AD FS webpages while preparing for the migration, use your backup data to overwrite the default AD FS webpages that were created by default in the %systemdrive%\inetpub\adfs\ls directory as a result of the AD FS configuration on Windows Server 2012.

  2. 新增您,您只是升級到 Windows Server 2012 負載平衡器 WID 發電廠此最後一個的伺服器。Add this last server of your WID farm that you just upgraded to Windows Server 2012 to the load balancer.

  3. 還原任何剩餘 AD FS 的自訂項目,例如自訂屬性存放區。Restore any remaining AD FS customizations, such as custom attribute stores.

後續步驟Next Steps

準備移轉 AD FS 2.0 聯盟伺服器Prepare to Migrate the AD FS 2.0 Federation Server
移轉 AD FS 2.0 聯盟伺服器 Proxy 準備Prepare to Migrate the AD FS 2.0 Federation Server Proxy
移轉 AD FS 2.0 聯盟伺服器Migrate the AD FS 2.0 Federation Server
移轉 AD FS 2.0 聯盟伺服器 ProxyMigrate the AD FS 2.0 Federation Server Proxy
移轉 AD FS 1.1 Web 代理程式Migrate the AD FS 1.1 Web Agents