ADFS Changing Hash algorithm for O365

Posted by

By default ADFS sign tokens on Azure AD to reassute that is not possible to modify o alter them, as probably you know, everything is related with security, in this case those signs are encrypted with SHA1 or SHA256.

By default, when you deploy an ADFS service and you federate with O365, the RPT created is done with SHA1, but if we wnat to increase security in this RPT, we can change it to SHA256.

The only thing that we have to do is to enter to the ADFS console, go to the RPT in question, and then change the secure hash algorithm.

adfs_hal.png

That’s all!

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s