Errors when trying to Renew Azure AD MFA Extension Certificates

Question

Errors when trying to Renew Azure AD MFA Extension Certificates

Don In IT 0

I am trying to Renew our Azure AD MFA Extension Certificates, but when I run the PowerShell script I get this:

Set-ItemProperty : Cannot find path 'HKLM:\SOFTWARE\Microsoft\AzureMfa' because it does not exist.

At C:\Program Files\Microsoft\AzureMfa\Config\AzureMfaNpsExtnConfigSetup.ps1:41 char:5

Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\AzureMfa\" -Name ...

```
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
```
- CategoryInfo : ObjectNotFound: (HKLM:\SOFTWARE\Microsoft\AzureMfa:String) [Set-ItemProperty], ItemNotFoundException
- FullyQualifiedErrorId : PathNotFound,Microsoft.PowerShell.Commands.SetItemPropertyCommand

Import-Module : The specified module 'C:\Program Files (x86)\WindowsPowerShell\Modules\AzureMfaClientCertProvider' was not loaded because no valid module file was found in any module directory.

At C:\Program Files\Microsoft\AzureMfa\Config\AzureMfaNpsExtnConfigSetup.ps1:53 char:1

Import-Module -Name $env:ProgramFiles\WindowsPowerShell\Modules\Azure ...


    + CategoryInfo          : ResourceUnavailable: (C:\Program File...entCertProvider:String) [Import-Module], FileNotFoundException

    + FullyQualifiedErrorId : Modules_ModuleNotFound,Microsoft.PowerShell.Commands.ImportModuleCommand

Givary-MSFT 35,786 Reputation points Microsoft Employee Moderator

2024-04-01T16:36:39.32+00:00

@Don In IT Just checking in to see if below information was helpful. If you have any further updates on this issue, please feel free to post back.

Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.

1 answer

Your answer

Givary-MSFT 35,786 Reputation points Microsoft Employee Moderator

2024-04-01T16:36:39.32+00:00

@Don In IT Just checking in to see if below information was helpful. If you have any further updates on this issue, please feel free to post back.

Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.

Answer 1

Givary-MSFT 35,786 Microsoft Employee Moderator

@Don In IT Thank you for reaching out to us, on the server where you are trying to perform renewal of certificate what do you see in the computer store (certlm.msc) do you see the certificate for nps configuration?

Above mentioned error is very much generic referring to certificate not present/module is not found.

Request you to review the steps mentioned here - https://learn.microsoft.com/en-us/entra/identity/authentication/howto-mfa-nps-extension-vpn#configure-certificates-for-use-with-the-nps-extension-by-using-a-powershell-script:~:text=%3E%20Settings.-,Install%20the%20NPS%20extension,-The%20NPS%20extension to check if it helps else we can connect offline to discuss further on this.

Don In IT 0 Reputation points

2024-03-06T14:16:16.7066667+00:00

I will go read that article, thank you VERY much!! IN the meantime I do have a cert on that server.
Givary-MSFT 35,786 Reputation points Microsoft Employee Moderator

2024-03-07T04:34:00.0866667+00:00

@Don In IT Let me know if the above mentioned doc helps to renew the certificate else we can connect offline and troubleshoot further on this issue.

Share via

Errors when trying to Renew Azure AD MFA Extension Certificates

1 answer

Your answer