Note In the URL, "sts.contoso.com" represents your AD FS federation service name.
When you run the Single Sign-On Test in Microsoft Remote Connectivity Analyzer (testconnectivity.microsoft.com), the test fails when it tries to contact your ADFS endpoint, and you receive the following error message:
Make sure that TLS 1.0 is enabled on the ADFS servers in your environment. To do this, follow these steps on each server:
- In Registry Editor, locate and then click the following registry subkey:HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\TLS 1.0
- Double-click the Enable DWORD value. If the value in the Value data box is 0, change the value to 1, and then click OK.
- Exit Registry Editor, and then restart the server.
Article ID: 3088997 - Last Review: 28 Dec 2016 - Revision: 1