Usually, un-federating a domain is straight forward. You run the Convert-MSolDomainToStandard cmdlet from PowerShell Console on the ADFS Server. However, there may be situations when you can't access into the ADFS server, and you get a similar error -
Connect-MsolDomaintoStandard : Failed to connect to Active Directory Federation Services 2.0 on the local machine. Please try running set-msolADFSContext before running this command again.
Convert-MsolDomainToStandard -DomainName vermasandeep.in -PasswordFile C:\Temp_Password_File.CSV -SkipUserConversion $False
What to do now? How to un-federate the domain without fixing the ADFS issue first?
If you know ADFS Server is completely down or inaccessible for any reason, you can still convert the domain to 'standard' use below steps -
You can use the following cmdlet to convert the domain to 'managed'. This can come handy when you want to remove a domain from Microsoft 365 (formerly Office 365) tenant as soon as possible.
Set-MsolDomainAuthentication -DomainName <Domain Name> –Authentication Managed
Step 1: Connect to Microsoft 365 / MSOL Service using PowerShell
connect-msolservice
Step 2: Verify the domain's current authentication method
get-msoldomain -DomainName vermasandeep.in
Step 3: Convert the Domain's method to 'Managed'
Set-MsolDomainAuthentication -DomainName vermasandeep.in –Authentication Managed
Step 3: Verify the domain's new authentication method. Managed means standard.
get-msoldomain -DomainName vermasandeep.in
Simple!
What to do now? How to un-federate the domain without fixing the ADFS issue first?
If you know ADFS Server is completely down or inaccessible for any reason, you can still convert the domain to 'standard' use below steps -
You can use the following cmdlet to convert the domain to 'managed'. This can come handy when you want to remove a domain from Microsoft 365 (formerly Office 365) tenant as soon as possible.
Set-MsolDomainAuthentication -DomainName <Domain Name>
Step 1: Connect to Microsoft 365 / MSOL Service using PowerShell
connect-msolservice
Step 2: Verify the domain's current authentication method
get-msoldomain -DomainName vermasandeep.in
Step 3: Convert the Domain's method to 'Managed'
Set-MsolDomainAuthentication -DomainName vermasandeep.in –Authentication Managed
get-msoldomain -DomainName vermasandeep.in
Simple!
0 comments:
I welcome you to write your comments here..