Article ID: 2707375 - View products that this article applies to.
Expand all | Collapse all

PROBLEM

After you run the Microsoft Online Services Diagnostics and Logging (MOSDAL) Support Toolkit, the Active Directory Federation Services (AD FS) diagnostics log contains the following error message:

The AD FS Token-Signing certificate expired on {0}.

Note This log is located at Admin_Applications\SSO_Diagnostic_Tests\ADFSDiagnostic.txt.

Additionally, when you sign in to your Microsoft cloud service such as Office 365, Windows Azure, or Windows Intune by using a federated account, you may get the following error message before you can provide credentials to AD FS:
"There was a problem accessing this site"

CAUSE

This issue may occur if the AD FS token-signing certificate has expired because the AD FS certificate auto-renew functionality is deactivated.

SOLUTION

Reissue the token-signing certificate. For more info about how to do this, see the following Microsoft Knowledge Base article:
2713898 "There was a problem accessing the site" error from AD FS when a federated user signs in to Office 365, Windows Azure, or Windows Intune  

MORE INFORMATION

Still need help? Go to the Office 365 Community website or the Windows Azure Active Directory Forums website.

Properties

Article ID: 2707375 - Last Review: November 26, 2013 - Revision: 16.0
Applies to
  • Windows Azure
  • Microsoft Office 365
  • Microsoft Office 365 for enterprises (pre-upgrade)
  • Microsoft Office 365 for education  (pre-upgrade)
  • CRM Online via Office 365 E Plans
  • Windows Azure Recovery Services
Keywords: 
o365 o365a mosdal4.5 o365062011 pre-upgrade o365e o365022013 after upgrade o365m KB2707375

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com