Categories
How-To Software Technical

External ADFS Password Change Broken after Windows Updates

AD FS 3.0 has the capability to allow the user to change their password when they supply their existing password. To enable this, open the AD FS management console, expand Service, and select Endpoints. In the middle pane, you’ll see a long list of endpoints. Scroll down to the Other section, and select /adfs/portal/updatepassword/. Right click on it, and choose enable

This will enable users on the corporate network to use the AD FS forms-based login to change their password.

Recently After installing Windows Updates, I’ve noticed that this was no longer working for my ensternal clients who connect to https://<servername>/adfs/portal/updatepassword.

Externally I would immediately see the error message “An error occurred. Contact your administrator.” When opening the URL within the LAN it opened just fine and I would be able to change passwords.

 

Turns out that the recent updates have disabled the setting allowing the updatepassword feature to be exposed.  I had addressed this by opeing the AD FS management console, expand Service, and select Endpoints. In the middle pane, you’ll see a long list of endpoints. Scroll down to the Other section, and select /adfs/portal/updatepassword/. Setting the proxy enabled to “Yes” and restarting ADFS Services on both the ADFS server and Proxy server.

And now it works without issue.

 

I was unable to determine which update caused this this If I come across it I will update this post and share.

Here is a list of recently applied updates.

 

 

One reply on “External ADFS Password Change Broken after Windows Updates”

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.