Share via

How to disable adfs relying party trust revocation settings

ADRIAO RAMOS 1 Reputation point
2021-02-25T15:02:57.87+00:00

Hi, all
I need to disable a relying party trust revocation settings.
I have found this command
Get-AdfsRelyingPartyTrust -Identifier | Set-AdfsRelyingPartyTrust -SigningCertificateRevocationCheck None -EncryptionCertificateRevocationCheck None

if the identifier is
sydle

How do I use the command I have tried "syde", sydle, but none of them works.
Thank you

Microsoft Security | Active Directory Federation Services
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Pierre Audonnet - MSFT 10,201 Reputation points Microsoft Employee
    2021-02-25T15:48:55.757+00:00 
    Get-AdfsRelyingPartyTrust -Identifier sydle | Set-AdfsRelyingPartyTrust -SigningCertificateRevocationCheck None -EncryptionCertificateRevocationCheck None

    Should work just fine. Maybe that's not the actual identifier but the name. Try the following: 

    Get-ADFSRelyingPartyTrust | Select-Object name,Identifier | Out-GridView -Title "Select a relying party" -PassThru | %{ Set-AdfsRelyingPartyTrust -TargetIdentifier ([string] $_.Identifier) -SigningCertificateRevocationCheck None -EncryptionCertificateRevocationCheck None }

    It will all your relying party trusts in a graphical table, you select one or more and click OK. Then it will disable the checks for all selected relying party trusts.

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.