ADFS Certificate Roll over
Article ID: 100038527
Updated On:
Description
Description
When you set up ADFS the default certificate is set to rollover over in 12 months. This causes an issue with the authentication as it in turn generates a new token signing certificate. To avoid this, you can turn automatic rollover off. (if your SSL certificate expires greater than 12 months time)
(In Windows PowerShell):
Add-PSSnapin Microsoft. Adfs .PowerShellSet-ADFSProperties -AutoCertificateRollover $falseTo extend certificate rollover to every 3 years:
Set-AdfsProperties -CertificateDuration 1095 For more help on using Windows PowerShell you can consult the advise on Microsoft.com
Issue/Introduction
ADFS Certificate Roll over
Was this article helpful?
Yes
No
Powered by
