Error After Renew certificate ADFS 3.0–This page cannot be displayed

Posted on July 2, 2017 by Idit Bnaya

image

First lets go over the correct steps to renew the Certificate

Step1: Check the current signing certificates:

  • Open ADFS  PowerShell command window, and run the following command:

Get-ADFSCertificate –CertificateType token-signing

  • If you only see one certificate, and the NotAfter date is within 5 days, you need to generate a new certificate.

Srep:2 Renew the token signing certificate manually:

  • To generate a new certificate, execute the following command

Update-ADFSCertificate –CertificateType token-signing

  • Verify the update by running the following command again:

Get-ADFSCertificate –CertificateType token-signing

Step 3: Update the new token signing certificates for the Office 365 trust

  • Run:

Connect-MsolService

  • Enter the Office 365 Global Admin credentials
  • Run:

Update-MSOLFederatedDomain –DomainName “Domain.com”

STEP 4:Check if the certificate is updated correctly

  • Open ADFS  PowerShell command window, and run the following command:

Get-AdfsSslCertificate

  • Look at the value: CertifiacteHash
  • Check that the CertifiacteHash is the same as the thumbprint of the new certificate and not the old one

image

  • If the thumbprint is not the same or you see only one cert and not two run the following:

Set-AdfsSslCertificate  -thumbprint “the new thumbprint”

image

  • Run:

Get-AdfsSslCertificate

Check that the CertifiacteHash is correct.

Go over step 3 again (Update-MSOLFederatedDomain –DomainName “Domain.com”)

 

Good luck Smile

This entry was posted in ADFS and tagged , , , . Bookmark the permalink.

One Response to Error After Renew certificate ADFS 3.0–This page cannot be displayed

  1. Pingback: שגיאה לאחר עדכון תעודה ב-This page cannot be displayed :ADFS 3.0 | ID(o)IT

Leave a Reply