question

Radje avatar image
0 Votes"
Radje asked MarileeTurscak-MSFT answered

AD FS - Certificate Authentication - no valid certificate found

Hello,

I have one AD FS server (OS: Windows Server 2016).
I created user certificate and import to SmartCard.

I want to authenticate against AD FS with user Certificate on SmartCard. On AD FS server I setup this:
225822-image.png

On test AD FS login page I can see the options to Sign in using a certificate, when I select this options I will get this error:
225776-image.png


I tested this internaly on AD FS server.
Any ideas where could be a problem?

Thanks a lot guys

windows-active-directorywindows-server-securityadfs
image.png (32.9 KiB)
image.png (92.6 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

MarileeTurscak-MSFT avatar image
0 Votes"
MarileeTurscak-MSFT answered

Hi @Radje,

Thanks for your post and for sharing the screenshots. As mentioned in the error "No valid certificate found", this happens if you are either missing an SSL certificate on the AD FS server itself or need to renew an expired one.

If you already did this and your certificate was recently issued, it may take three to six days for the certificate to be validated.

To deploy a new SSL certificate to your AD FS server, you can follow the guide, Managing SSL Certificates in AD FS and WAP in Windows Server 2016


To replace an existing certificate, you can follow the guide, Update the TLS/SSL certificate for an Active Directory Federation Services (AD FS) farm



If the information provided was helpful to you, please Accept the answer. This will help us and other community members as well.



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.