Channel: Claims based access platform (CBA), code-named Geneva forum

X Mark channel Not-Safe-For-Work? cancel confirm NSFW Votes: (0 votes)

X Are you the publisher? Claim or contact us about this channel.

X 0

Showing article 14 of 2535 in channel 6951874
Channel Details:

Title: Claims based access platform (CBA), code-named Geneva forum
Channel Number: 6951874
Language: English
Registered On: December 23, 2012, 4:24 pm
Number of Articles: 2535
Latest Snapshot: June 10, 2016, 6:31 am
RSS URL: http://social.msdn.microsoft.com/forums/en-us/geneva/threads?outputas=rss
Description: This forum is for discussion of "Geneva" Server, "Geneva" Framework and Windows CardSpace "Geneva."
Catalog: //named103.rssing.com/catalog.php?indx=6951874

↧

ADFS 2.0 and ACS: ACS cannot validate Certificate when using certificate from internal CA

May 27, 2012, 5:32 am

≫ Next: How to sign out in WIF 4.5 now FederatedPassiveSignInStatus control has gone?

≪ Previous: acs bug on deleting certain claim mappings

I provide Tokens to ACS using ADFS 2.0 STS (STS A). When I try to login to ACS Portal using the ADFS Claims Provider I end up with an Error:
Message ACS20001: An error occurred while processing a WS-Federation sign-in response.
Inner Message ACS50008: SAML token is invalid.
Inner Message ACS50017: The Certificate with Subject [MySigning Cert Subjetct] faild validation

Since I use Certificats form my internal CA for Token Signing & Decryption, the message seems to be clear: ACS cannot Access CRL CDP and/or AIA.
But both CRL CDP and AIA definetly ARE accessible from outside using http.

Federation between STS A and other Test-Instance of ADFS works well. I'v got onle problems with ACS.

You can find my signing-cert on: http://rootcerts.cus.teststs.ch/Signing_Cert.crt

thanks for any help

Pirmin

↧