Forum Discussion

Sloan Ozanne's avatar
Sloan Ozanne
Copper Contributor
Nov 06, 2017
Solved

ADFS 3.0 new token-signing cert not in federationmetadata

Last week a added a secondary, internally signed, token-signing certificate to our ADFS 3.0 farm in advance of the cert rollover later this week. When running a get-adfsproperties to validate we see ...
windows server
  • Sloan Ozanne's avatar
    Sloan Ozanne
    Nov 13, 2017

    Apologies.......failed to post an update after we resolved it.

     

    Ended up having to reboot the ADFS servers. Cycling the ADFS service wasn't enough. Likely some other internal issue that needs to be looked at, and will, but this specific problem with the metadata is resolved.

Pié's avatar
Pié
Icon for Microsoft rankMicrosoft
Nov 12, 2017

Can you share the output of these two line:

$metadata = Invoke-WebRequest -Uri "https://adfs.verenatex.com/federationmetadata/2007-06/federationmetadata.xml"
([XML] $metadata.Content).EntityDescriptor.RoleDescriptor.KeyDescriptor

The output does not contain sensitive data and of course, change the URL with yours.