Directory Programming .NET

Hi,

My biggest issue so far has been in configuring the SSL certs.

Server certs are by far the easiest for me, I've setup SSL websites before so this makes sense to me.

I also haven't had any issues with the token-signing certs, but I don't understand that 100% yet.

Setting up the proxy with a client cert has been the biggest trouble for me.

I'm getting this error on the FS-A/R server (both roles on one server):

any ideas how to fix this error?

I think all I need to is correctly setup the client cert between proxy and FS.

Suffice it to say that my certs were foobar!

I cleared every cert and reinstalled (many times) and finally got it working.

I'll be sure to post some more notes when I am done, this was very confusing to me, and I am not done with my implentation yet.

Glad you got it working.  You caught me at a bad time and I wasn't getting around to trying to help you very quickly.

Please post back if you still have trouble.  Certs are definitely one of the most challenging parts of ADFS, especially if you are a PKI newbie.  :)

I've done SSL on web servers before, but I'm not an expert yet on PKI.

I think I was making it more difficult than it had to be ;)