API tools faq
paste
crexin

Update ADFSCertificate autorollover for CRM

crexin
Oct 7th, 2020 (edited)
394
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PowerShell 0.82 KB | None | 0 0
raw download clone embed print report
  1. <#
  2. https://social.technet.microsoft.com/wiki/contents/articles/1424.ad-fs-2-0-how-to-enable-and-immediately-use-autocertificaterollover.aspx
  3. Connected to ADFS Server
  4. Saw that the Initial error was one that indicated the Token signing certificates expired
  5.  
  6. Issued the following commands to update the Token Signing certificates on the ADFS Server.
  7. #>
  8.  
  9. Add-PSSnapin Microsoft.Adfs.Powershell
  10. Set-ADFSProperties -AutoCertificateRollover $true
  11. Update-AdfsCertificate -Urgent
  12.  
  13. <#
  14. Then went through steps on the CRM Server to unconfigure CRM IFD, CRM Claims and reconfigured CRM Claims and CRM Internet Facing Deployment (IFD)
  15. Ran IISReset.
  16.  
  17. Then on ADFS Management Console.
  18. Updated Federation Metadata for the Claims and the IFD Endpoints
  19. Restarted the ADFS Services and after that the CRM Site was accessible again.
  20. #>
  21.  
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!