This form does not yet contain any fields.
    Navigation
    Login
    « Cloud Computing Privacy Concerns | Main | Re-awarded as Directory Services MVP for 2010 »
    Tuesday
    Jan052010

    ADFSv2 RC & IIS Certificates

    DateTuesday, January 5, 2010 at 04:26PM

    (In which our heroine re-iterates that "It's always PKI".)

    Tomek came across a fun behavior with certs during ADFSv2 RC setup, that I thought I would pass along to others. Short version, token-signing cert was the same cert that was being used for IIS binding, attempting to change it in the ADFS console without changing the associated IIS binding first produced the following:

    The SSL certificate with thumbprint <thumbprint> is configured in IIS but could not be found in the Local Computer Personal certificate store.  SSL Certificates configured in IIS must also be present in the Local Computer Personal certificate store in order for AD FS 2.0 to use them.

    Fix the IIS binding? Problem solved. Non-intuitive based on the error message, if you ask me.

     

    AuthorLaura E. Hunter | CommentPost a Comment |

    Reader Comments

    There are no comments for this journal entry. To create a new comment, use the form below.

    PostPost a New Comment

    Enter your information below to add a new comment.

    My response is on my own website »
    Author Email (optional):
    Author URL (optional):
    Post:
     
    All HTML will be escaped. Hyperlinks will be created for URLs automatically.
    Alert
    Comment Moderation Enabled
    Your comment will not appear until it has been cleared by a website editor.

    Notify me of follow-up comments via email.