Hotspot Question
Your network contains an Active Directory forest named contoso.com. The forest contains an Active
Directory Federation Services (AD FS) farm. You install Windows Server 2016 on a server named
Server2. You need to configure Server2 as a node in the federation server farm. Which cmdlets
should you run? To answer, select the appropriate options in the answer area.
Answer: 
1) Install-WindowsFeature
2) Add-AdfsFarm
Since there is no option Add-AdfsFarm, there is no right answer in this exam question.
1
0
The Add-AdfsFarmNode cmdlet adds this computer to an existing federation server farm.
https://technet.microsoft.com/de-de/library/dn479385(v=wps.630).aspx
2
0
Answer: 1. Install-WindowsFeature; 2. Install-ADFSFarm
Actually, Musiman, you will find that there IS a cmdlet ‘Install-ADFSFarm’ in Windows Server 2016, so the answer would be correct. Sepp, you are right, if there already exists an ADFS Farm, then the right answer would be to ‘Add-ADFSFarmNode’.
0
0
Install-ADFSFarm is incorrect. This cmdlet only creates a new ADFS Farm, but the server should be added to an existing farm and you cannot use Install-ADFSFarm to add a server to an existing farm.
With Add-ADFSFarmNode you can add a node to an existing farm.
3
0
Install-ADSFfarm can create the first node in a farm.
Example 2: Create the first node in a federation server farm using a group Managed Services Account
PowerShell
PS C:\> Install-AdfsFarm -CertificateThumbprint 8169c52b4ec6e77eb2ae17f028fe5da4e35c0bed -FederationServiceName fs.corp.contoso.com -GroupServiceAccountIdentifier CONTOSO\GroupAccount01
This example creates the first node in a federation server farm that uses a group Managed Service Account as the service account. In this example, a certificate thumbprint value is supplied for the CertificateThumbprint parameter. This certificate will be used as the SSL certificate and the service communications certificate. Automatically generated, self-signed certificates will be used for the token signing and token decryption certificates. To specify certificates for token signing and token decryption, specify thumbprint values for the SigningCertificateThumbprint and DecryptionCertificateThumbprint parameters.
0
0
The question states that there already is an existing ADFS farm: “The forest contains an Active Directory Federation Services (AD FS) farm. You install Windows Server 2016 on a server named Server2. You need to configure Server2 as a node in the federation server farm”
So, creating a new node in a new farm is incorrect.
1
0