from the ADFS management console it doesn’t appear that there is a method to use a metadata file to update an existing relying party trust. i had to resort to deleting the old trust and recreating a new one with the new metadata file. of course this means that claim rules have to be recreated (which could be a pain).

i figured there must be a better way to do this…and found the related powershell cmdlets.

use Get-AdfsRelyingPartyTrust to retrieve info for all relying party trusts or Get-AdfsRelyingPartyTrust [name/display name] to retrieve info about a specific trust.

to update an existing trust from a federation metadata file use Update-AdfsRelyingPartyTrust -TargetName [name/display name] -MetadataFile [file path]

source:
http://technet.microsoft.com/en-us/library/dn479361.aspx

update 5/1/2014:
just discovered these cmdlets only exist in windows 2012 r2 and not in previous releases 🙁

update 4/30/2014:
confirmed that Update-AdfsRelyingPartyTrust works as expected in 2012 r2

Comments are closed.