The Test-FederationTrust cmdlet reveals this issue more accurately. For example, after you run the Test-FederationTrust cmdlet, the result resembles the following:
RunspaceId : xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxxxxxx
Id : OrganizationCertificate
Type : Error
Message : Unable to find the certificate referenced by property OrgPrivCertificate in the FederationTrust object.
- Export the federation certificate from another Exchange server that has the certificate to your Exchange server.
Note The certificate may have to be updated to include the federation service and delegation domains.
- Make sure that the certificate is enabled for the federation service. For more info about how to enable a certificate for the federation service, go to the following Microsoft website:
- Restart the MSExchangeServicesAppPool application pool by using the Internet Information Services (IIS) 7 console. For more info about how to restart application pools in IIS 7, go to the following Microsoft website:
Article ID: 2710846 - Last Review: Dec 16, 2016 - Revision: 1