Your network contains an Active Directory domain named contoso.com. The domain contains a member server
named Server1 that has the Active Directory Federation Services server role installed. All servers runWindows
Server 2012.
You complete the Active Directory Federation Services Configuration Wizard on Server1.
You need to ensure that client devices on the internal network can use Workplace Join.
Which two actions should you perform on Server1? (Each correct answer presents part of the solution. Choose
two.)
A.
Run Enable AdfsDeviceRegistration -PrepareActiveDirectory.
B.
Edit the multi-factor authentication global authentication policy settings.
C.
Edit the primary authentication global authentication policy settings.
D.
Run Set-AdfsProxyPropertiesHttpPort 80.
E.
Run Enable-AdfsDeviceRegistration.
Explanation:
Corrected:
http://technet.microsoft.com/en-us/library/dn280939.aspx#BKMK_4
To configure Device Registration Service for Windows Server 2012 RTM
Open a Windows PowerShell command window and type:
Initialize-ADDeviceRegistration
When you are prompted for a service account, type contoso\fsgmsa$.
Now run the Windows PowerShell cmdlet.
Enable-AdfsDeviceRegistration
On the ADFS1 server, in the AD FS Management console, navigate to Authentication Policies. Select Edit
Global Primary Authentication. Select the check box next to Enable Device Authentication, and then click
OK.
Enable AdfsDeviceRegistration -PrepareActiveDirectory. – that even is not correct command.