Despite following MilitaryCAC.com, certs won't get recognized.

Ching, YiMing 0 Reputation points
2023-05-22T20:03:18.7433333+00:00

I have a newish desktop, HP Envy 34. I uploaded the certs from militarycac.com but I keep on getting this error - I've uninstalled and reinstalled the Client Certificates but keep on getting the same message.

Any recs are apprecaited.

"No valid client certificate found in the request. No valid certificates found in the user's certificate store. Please try again after closing and reopening the browser and choose a different authentication method. Sign in with other options

Report this error to your administrator

Error details

  • Activity ID: 51d520ce-8aa9-0d2a-8f8f-ef76f3c4e009
  • Relying party: Microsoft Office 365 Identity Platform USGov
  • Error details: MSIS7121: The request did not contain a valid client certificate that can be used for authentication. This occurs when there are no valid certificates on the client computer, for example if all certificates have expired or been revoked. Error Code: 0x490
  • Node name: 82d33781-53b7-4ad7-9c15-0b94f4171d6f
  • Error time: Mon, 22 May 2023 19:52:39 GMT
  • Proxy server name: DC***06
  • Cookie: enabled
  • User agent string: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
Microsoft Security | Active Directory Federation Services
{count} votes

1 answer

Sort by: Most helpful
  1. Pierre Audonnet - MSFT 10,191 Reputation points Microsoft Employee
    2023-05-22T20:40:08.9333333+00:00

    Are you an AD FS administrator? If so, make sure you follow this guidance: https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-user-certificate-authentication#troubleshoot-certificate-authentication and report once you still have issues.

    If you are an AD FS user, in a sense you are just using that AD FS platform as a user, you need to seek support within your organization.

    Note that since we can see this authentication attempt was made to access Azure AD protected workloads, Certificate Based Authentication is now available directly in Azure AD (without having to deploy AD FS). See here for details: https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-certificate-based-authentication

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.