I am deploying with following scenario, need your expert advise.
Customer local domain abc.local à AD FS servers member of local domain (ADFS1.abc.local, ADFS2.abc.local). ADFS server farm setup with two server load balanced on F5 (sts.abc.sa), internal DNS Host name
Customer External Domain abc.sa à UPN Suffix Added, all users UPN suffix is changed to abc.sa, external DNS Host (sts.abc.sa)
My Query
1- Do I need to change the domain suffix of server before running the Federation PowerShell command or following command will work
Set-MsolADFSContext –Computer FQDN-OF-ADFS_SERVER (FQDN WITH ABC.LOCAL OR ABC.SA)
2- DO I need to run the above command on second ADFS server part of the farm) or how it works as I notice, the second server though it’s part of the ADFS farm but not showing the ADFS MMC or responding to STS Metadata URL. Even on F5 NLB the second server is showing down. Is it normal behavior. I read somewhere the second server need to promoted to primary in case first server is unavailable. Please advise.
The common name of the certificate is sts.abc.sa
