Despite following MilitaryCAC.com, certs won't get recognized.

Question

I have a newish desktop, HP Envy 34. I uploaded the certs from militarycac.com but I keep on getting this error - I've uninstalled and reinstalled the Client Certificates but keep on getting the same message.

Any recs are apprecaited.

"No valid client certificate found in the request. No valid certificates found in the user's certificate store. Please try again after closing and reopening the browser and choose a different authentication method. Sign in with other options

Report this error to your administrator

Error details

• Activity ID: 51d520ce-8aa9-0d2a-8f8f-ef76f3c4e009
• Relying party: Microsoft Office 365 Identity Platform USGov
• Error details: MSIS7121: The request did not contain a valid client certificate that can be used for authentication. This occurs when there are no valid certificates on the client computer, for example if all certificates have expired or been revoked. Error Code: 0x490
• Node name: 82d33781-53b7-4ad7-9c15-0b94f4171d6f
• Error time: Mon, 22 May 2023 19:52:39 GMT
• Proxy server name: DC***06
• Cookie: enabled
• User agent string: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36

Answer 1

Are you an AD FS administrator? If so, make sure you follow this guidance: https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-user-certificate-authentication#troubleshoot-certificate-authentication and report once you still have issues.

If you are an AD FS user, in a sense you are just using that AD FS platform as a user, you need to seek support within your organization.

Note that since we can see this authentication attempt was made to access Azure AD protected workloads, Certificate Based Authentication is now available directly in Azure AD (without having to deploy AD FS). See here for details: https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-certificate-based-authentication