-
Notifications
You must be signed in to change notification settings - Fork 52
02 uninstallation
All Uninstallation operations must be run by a user who have Local Administration rights on each ADFS server
Starting with ADFS 2016, this user must be in the ADFS administration group
Removing an ADFS Server from the MFA farm doesn’t remove the server from ADFS farm 😃. Server is removed from MFA servers list. So, no notification can occur, and some commands will not operate.
You can use this command if you only want to remove a server from your farm
- Log on the Primary ADFS server of your farm as administrator
- Launch a new PowerShell session as administrator
- type get-help UnRegister-MFAComputer –detailed to get information.
- Enter your command
UnRegister-MFAComputer -ServerName yourserverNotifications are used to sync configuration changes without restarting ADFS instances. for example, if you change the password in SMTP configuration, this modification is “live” updated on all servers in the MFA list.
if you want to completely removes adfsmfa for the ADFS configuration. adfsmfa is removed from ADFS’s MFA providers list and configuration is deleted
Component unregistration can only be done with a PS Cmdlet UnRegister-MFASystem.
The unregistration process remove configuration from the ADFS Farm, and optionally backup your actual configuration.
Removes adfsmfa from your ADFS Farm.
- Log on the Primary ADFS server of your farm as administrator
- Launch a new PowerShell session as administrator
- type get-help UnRegister-MFASystem –detailed to get information.
- Enter your command
UnRegister-MFASystemUnRegister-MFASystem -RestartFarm -BackupFilePath c:\temp\myconfig.xml
On each ADFS server, you can now uninstall adfsmfa from the control panel.
All MFA databases, certificates are not removed. you must do it manually