zoukankan      html  css  js  c++  java
  • The encryption certificate of the relying party trust identified by thumbprint is not valid

    CRM2013部署完ADFS后通过url在浏览器中访问测试是否成功,成功进入登陆界面但在登陆界面输入用户名和密码后始终报身份验证失败,系统中的报错信息如下:Microsoft.IdentityServer.AuthenticationFailedException: MSIS3014。The encryption certificate of the relying party trust 'https://internalcrm.xx.com.cn:446/' identified by thumbprint 'BF19134359B872575F6F218181267B831EFE4A94' is not valid. It might indicate that the certificate has been revoked, has expired, or that the certificate chain is not trusted. 


    解决方法:执行下面这段指令把证书加密验证关掉

    Add-pssnapin microsoft.adfs.powershell
    set-adfsrelyingpartytrust -targetname "your relying party trust name" -encryptioncertificaterevocationcheck none
    set-adfsrelyingpartytrust -targetname "your relying party trust name" -signingcertificaterevocationcheck none


    此处的"your replying party trust name"即是在AD FS管理器中新建的Replying Party Trust的displayname




    再次访问登陆就验证过去了。


    参考链接:http://ms-crm-2011-beta.blogspot.com/2013/05/an-error-occurred-during-attempt-to.html

    
  • 相关阅读:
    MySQL数据库“局部”乱码
    每个人都可以写博客
    命令行导入SQL文件
    数据库连接扩展
    PHP程序设计经典300例
    C# 调用外部dll
    asp.net中实现文件下载功能
    Windows10下Docker的安装
    java基础——面向对象
    java基础——第一章概述
  • 原文地址:https://www.cnblogs.com/cl1024cl/p/6205973.html
Copyright © 2011-2022 走看看