%3CLINGO-SUB%20id%3D%22lingo-sub-398481%22%20slang%3D%22en-US%22%3ENew%20ADFS%20Content%20on%20TechNet%20Wiki%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-398481%22%20slang%3D%22en-US%22%3E%0A%20%26lt%3Bmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3DUTF-8%22%20%2F%26gt%3B%3CSTRONG%3EFirst%20published%20on%20TechNet%20on%20Sep%2020%2C%202010%20%3C%2FSTRONG%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fblogs.technet.com%2Fb%2Faskds%2Farchive%2Ftags%2FAdam%2BConkle%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3E%20Adam%20Conkle%20%3C%2FA%3E%20has%20published%20some%20great%20troubleshooting%2C%20tips%20and%20tricks%20and%20how%20to%20articles%20on%20TechNet%20that%20should%20help%20you%20in%20evaluating%20and%20implementing%20Active%20Directory%20Federation%20Services.%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-how-to-invoke-a-ws-federation-sign-out.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%20-%20How%20to%20invoke%20a%20WS-Federation%20sign-out%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-quot-an-unexpected-error-has-occurred-quot-error-or-blank-page-displayed-attempting-to-log-on-to-sharepoint-event-id-23-logged.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20%22An%20unexpected%20error%20has%20occurred%22%20error%20or%20blank%20page%20displayed%20attempting%20to%20log%20on%20to%20SharePoint%2C%20Event%20ID%2023%20logged%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-the-service-fails-to-start-quot-the-service-did-not-respond-to-the-start-or-control-request-in-a-timely-fashion-quot.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20The%20service%20fails%20to%20start.%20%22The%20service%20did%20not%20respond%20to%20the%20start%20or%20control%20request%20in%20a%20timely%20fashion.%20%22%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-query-notification-delivery-failed-because-of-the-following-error-in-service-broker-the-conversation-handle-quot-guid-is-not-found.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20Query%20notification%20delivery%20failed%20because%20of%20the%20following%20error%20in%20service%20broker%3A%20'The%20conversation%20handle%20%22%7BGUID%7D%20is%20not%20found.'%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fwindows-identity-foundation-wif-fedutil-exe-on-windows-server-2003-fails-with-quot-object-identifier-oid-is-unknown-quot.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20Windows%20Identity%20Foundation%20(WIF)%20-%20FedUtil.exe%20on%20Windows%20Server%202003%20fails%20with%20%22Object%20Identifier%20(OID)%20is%20unknown.%22%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-prompted-for-credentials-when-you-are-expecting-to-be-allowed-anonymous-access.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20Prompted%20for%20credentials%20when%20you%20are%20expecting%20to%20be%20allowed%20anonymous%20access%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fwindows-identity-foundation-wif-how-to-change-certificate-chain-validation-settings-for-web-applications.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20Windows%20Identity%20Foundation%20(WIF)%20-%20How%20to%20change%20certificate%20chain%20validation%20settings%20for%20web%20applications%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-how-to-set-the-primary-federation-server-in-a-wid-farm.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20How%20to%20set%20the%20Primary%20Federation%20Server%20in%20a%20WID%20Farm%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-the-admin-event-log-shows-error-111-with-system-argumentexception-id4216.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20The%20Admin%20event%20log%20shows%20Error%20111%20with%20System.ArgumentException%3A%20ID4216%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fwindows-identity-foundation-wif-throws-exception-quot-id6018-digest-verification-failed-for-reference-quot.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20Windows%20Identity%20Foundation%20(WIF)%20throws%20exception%3A%20%22ID6018%3A%20Digest%20verification%20failed%20for%20reference%22%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-browsing-to-federation-metadata-fails-quot-unable-to-download-federationmetadata-xml-quot.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20Browsing%20to%20Federation%20Metadata%20fails%20%22Unable%20to%20download%20federationmetadata.xml%22%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-continuously-prompted-for-credentials-when-using-firefox-3-6-3.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20Continuously%20prompted%20for%20credentials%20when%20using%20FireFox%203.6.3%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-how-to-configure-the-spn-serviceprincipalname-for-the-service-account.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20How%20to%20configure%20the%20SPN%20(servicePrincipalName)%20for%20the%20service%20account%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-continuously-prompted-for-credentials-while-using-fiddler-web-debugger.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20Continuously%20prompted%20for%20credentials%20while%20using%20Fiddler%20Web%20Debugger%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-quot-script-is-disabled-click-submit-to-continue-quot.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20%22Script%20is%20disabled.%20Click%20Submit%20to%20continue.%22%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-how-to-enable-and-immediately-use-autocertificaterollover.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20How%20to%20enable%20and%20immediately%20use%20AutoCertificateRollover%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-how-to-perform-an-unattended-installation-of-an-ad-fs-2-0-sts-or-proxy.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20How%20to%20perform%20an%20unattended%20installation%20of%20an%20AD%20FS%202.0%20STS%20or%20Proxy%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-the-ad-fs-2-0-windows-service-fails-to-start-event-102-and-220-logged.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20The%20AD%20FS%202.0%20Windows%20Service%20fails%20to%20start%20-%20Event%20102%20and%20220%20logged%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-how-to-manually-run-the-ad-fs-2-0-initial-configuration.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20How%20to%20manually%20run%20the%20AD%20FS%202.0%20Initial%20Configuration%20%3C%2FA%3E%3CP%3E%3C%2FP%3E%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CA%20href%3D%22http%3A%2F%2Fsocial.technet.microsoft.com%2Fwiki%2Fcontents%2Farticles%2Fad-fs-2-0-quot-id4037-the-key-needed-to-verify-the-signature-could-not-be-resolved-from-the-following-security-key-identifier-quot.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3E%20AD%20FS%202.0%20-%20%22ID4037%3A%20The%20key%20needed%20to%20verify%20the%20signature%20could%20not%20be%20resolved%20from%20the%20following%20security%20key%20identifier%22%20%3C%2FA%3E%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%3CP%3E--%20Jonathan%20%22Ned's%20Blog%20Monkey%22%20Stephens%3C%2FP%3E%0A%20%0A%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-398481%22%20slang%3D%22en-US%22%3EFirst%20published%20on%20TechNet%20on%20Sep%2020%2C%202010%20Adam%20Conkle%20has%20published%20some%20great%20troubleshooting%2C%20tips%20and%20tricks%20and%20how%20to%20articles%20on%20TechNet%20that%20should%20help%20you%20in%20evaluating%20and%20implementing%20Active%20Directory%20Federation%20Services.%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-398481%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3Eadam%20conkle%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Eadfs%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Etechnet%20wiki%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Microsoft
First published on TechNet on Sep 20, 2010
Adam Conkle has published some great troubleshooting, tips and tricks and how to articles on TechNet that should help you in evaluating and implementing Active Directory Federation Services.





AD FS - How to invoke a WS-Federation sign-out



AD FS 2.0 - "An unexpected error has occurred" error or blank page displayed attempting to log o...



AD FS 2.0 - The service fails to start. "The service did not respond to the start or control req...



AD FS 2.0 - Query notification delivery failed because of the following error in service broker:...



Windows Identity Foundation (WIF) - FedUtil.exe on Windows Server 2003 fails with "Object Identi...



AD FS 2.0 - Prompted for credentials when you are expecting to be allowed anonymous access



Windows Identity Foundation (WIF) - How to change certificate chain validation settings for web ...



AD FS 2.0 - How to set the Primary Federation Server in a WID Farm



AD FS 2.0 - The Admin event log shows Error 111 with System.ArgumentException: ID4216



Windows Identity Foundation (WIF) throws exception: "ID6018: Digest verification failed for refe...



AD FS 2.0 - Browsing to Federation Metadata fails "Unable to download federationmetadata.xml"



AD FS 2.0 - Continuously prompted for credentials when using FireFox 3.6.3



AD FS 2.0 - How to configure the SPN (servicePrincipalName) for the service account



AD FS 2.0 - Continuously prompted for credentials while using Fiddler Web Debugger



AD FS 2.0 - "Script is disabled. Click Submit to continue."



AD FS 2.0 - How to enable and immediately use AutoCertificateRollover



AD FS 2.0 - How to perform an unattended installation of an AD FS 2.0 STS or Proxy



AD FS 2.0 - The AD FS 2.0 Windows Service fails to start - Event 102 and 220 logged



AD FS 2.0 - How to manually run the AD FS 2.0 Initial Configuration



AD FS 2.0 - "ID4037: The key needed to verify the signature could not be resolved from the follo...

-- Jonathan "Ned's Blog Monkey" Stephens