AD FS authentication fails when using Chrome

You can circumvent this problem by switching off ‘Extended Protection’ for the adfs/ls web application.

To turn Extended Protection off:

1. On the AD FS server, launch IIS Manager.

2. On the left side tree view, access Sites -> Default Web Site -> adfs -> ls.

3. Once you have selected the “/adfs/ls” folder, double-click the Authentication icon, then right-click Windows Authentication and select Advanced Settings.

4. On the Advanced Settings dialog, choose Off for Extended Protection.

Done!