- You have a Web Application Proxy installed on Windows Server 2012 R2.
- A year after the installation, the Active Directory Federation Services (AD FS) certificate automatically updates when the automatic certificate rollover is enabled.
In this scenario, the users cannot be authenticated correctly in AD FS, and all users are blocked.
Note During the Web Application Proxy installation, the Web Application Proxy reads the AD FS certificate data so that it can make sure that users are authenticated correctly.
Update informationTo resolve this issue, install update rollup 2955164. For more information about how to obtain this update rollup package, click the following article number to view the article in the Microsoft Knowledge Base:
Article ID: 2935608 - Last Review: 13 May 2014 - Revision: 1