码迷,mamicode.com
首页 > 其他好文 > 详细

The encryption certificate of the relying party trust identified by thumbprint is not valid

时间:2015-01-04 11:03:29      阅读:166      评论:0      收藏:0      [点我收藏+]

标签:

CRM2013部署完ADFS后通过url在浏览器中訪问測试是否成功,成功进入登陆界面但在登陆界面输入username和password后始终报身份验证失败,系统中的报错信息例如以下:Microsoft.IdentityServer.AuthenticationFailedException: MSIS3014。The encryption certificate of the relying party trust ‘https://internalcrm.xx.com.cn:446/‘ identified by thumbprint ‘BF19134359B872575F6F218181267B831EFE4A94‘ is not valid. It might indicate that the certificate has been revoked, has expired, or that the certificate chain is not trusted. 

技术分享

解决方法:运行以下这段指令把证书加密验证关掉

set-adfsrelyingpartytrust -targetname "your relying party trust name" -encryptioncertificaterevocationcheck none
set-adfsrelyingpartytrust -targetname "your relying party trust name" -signingcertificaterevocationcheck none

此处的"your replying party trust name"即是在AD FS管理器中新建的Replying Party Trust的displayname


技术分享

再次訪问登陆就验证过去了。


參考链接:http://ms-crm-2011-beta.blogspot.com/2013/05/an-error-occurred-during-attempt-to.html



The encryption certificate of the relying party trust identified by thumbprint is not valid

标签:

原文地址:http://www.cnblogs.com/bhlsheji/p/4200396.html

(0)
(0)
   
举报
评论 一句话评论(0
登录后才能评论!
© 2014 mamicode.com 版权所有  联系我们:gaon5@hotmail.com
迷上了代码!