The encryption certificate of the relying party trust identified by thumbprint is not valid

首页 > 代码库 > The encryption certificate of the relying party trust identified by thumbprint is not valid

The encryption certificate of the relying party trust identified by thumbprint is not valid

2024-07-10 07:55:51 211人阅读

CRM2013部署完ADFS后通过url在浏览器中访问测试是否成功，成功进入登陆界面但在登陆界面输入用户名和密码后始终报身份验证失败，系统中的报错信息如下：Microsoft.IdentityServer.AuthenticationFailedException: MSIS3014。The encryption certificate of the relying party trust ‘https://internalcrm.xx.com.cn:446/‘ identified by thumbprint ‘BF19134359B872575F6F218181267B831EFE4A94‘ is not valid. It might indicate that the certificate has been revoked, has expired, or that the certificate chain is not trusted.

解决方法：执行下面这段指令把证书加密验证关掉

Set-ADFSRelyingPartyTrust  -TargetName <relyingpartytrustName> -EncryptionCertificateRevocationCheck None

此处的replyingpartytrustname即是在AD FS管理器中新建的Replying Party Trust的displayname

再次访问登陆就验证过去了。

参考链接：http://stackoverflow.com/questions/10209143/adfs-2-0-request-token-for-service-in-different-ad

声明：以上内容来自用户投稿及互联网公开渠道收集整理发布，本网站不拥有所有权，未作人工编辑处理，也不承担相关法律责任，若内容有误或涉及侵权可进行投诉：投诉/举报工作人员会在5个工作日内联系你，一经查实，本站将立刻删除涉嫌侵权内容。

联系
我们

首页 > 代码库 > The encryption certificate of the relying party trust identified by thumbprint is not valid

The encryption certificate of the relying party trust identified by thumbprint is not valid

看完仍有疑问？有类似问题直接问程序猿