Tag Archives: AD FS 2.0

Issue with AD FS 2.0 security update MS13-066 (kb2843639)

On Tuesday August 14th, as part of regular patch releases, two patches were released for AD FS 2.0: kb2843639 and kb2843638.  The update was described in kb2843639 and MS13-066. Installing these updates on machines not running AD FS 2.0 Update … Continue reading

Posted in AD FS, Hotfix, Troubleshooting | Tagged , , , | Leave a comment

MSIS7613: The signing certificate of the relying party trust is not unique across all relying party trusts in AD FS 2.0 configuration

Scenario You are attempting to add a relying party (RP) trust to your Active Directory Federation Services (AD FS) 2.0 federation service (FS) and you get the following error: Textually: An error occurred during an attempt to access the AD … Continue reading

Posted in AD FS, Troubleshooting | Tagged , , , , , , | 5 Comments

Update Rollup 3 for Active Directory Federation Services (AD FS) 2.0

Yesterday Microsoft released Update Rollup 3 for Active Directory Federation Services (AD FS) 2.0. This update includes five (5) hotfixes, summarised below.  The update is cumulative which means it contains all fixes and features in the previous two updates: update … Continue reading

Posted in AD FS, Hotfix, News | Tagged , , , , , , , , , | 3 Comments

AD FS 2.0 Issuance Authorization Rules: ensure two attributes match

I previously posted a couple of examples of AD FS 2.0 Issuance Authorization (AuthZ) Rules that I’ve used.  Troy posted a comment asking whether or not there is a way to ensure that two attributes match.  His specific example was … Continue reading

Posted in AD FS | Tagged , , , , , | 4 Comments

AD FS 329: The certificate that is identified by thumbprint ‘<thumbprint>’ could not be decrypted using the keys for X.509 certificate private key sharing

Scenario The Active Directory Federation Services (AD FS) 2.x service ADFSSRV will not start.  Event ID 329 is logged in the AD FS 2.0/Admin event log.  The pertinent text from event 329 is as follows: Description:The certificate that is identified … Continue reading

Posted in AD FS, Troubleshooting | Tagged , , , , , | 8 Comments

The service did not respond to the start or control request in a timely fashion.

When creating a new FS farm or joining a new node to an existing farm, i.e. running FSCONFIG.EXE or FSCONFIGWIZARD.EXE, or configuring an FS-P, i.e. running FSPCONFIGWIZARD.EXE, the process might fail with the resultant error being that the service did … Continue reading

Posted in AD FS | Tagged , , , , , , | 5 Comments

Uninstalling AD FS 2.0 (and deleting the databases)

**This post was written for AD FS 2.0 running on Windows Server 2008 or Windows Server 2008 R2.  For information on uninstalling and cleaning up AD FS 2.1 on Windows Server 2012 please see the post Uninstalling AD FS in … Continue reading

Posted in AD FS | Tagged , , , , , | 27 Comments