Event ID 709 — Federation Service Malformed Requests
Applies To: Windows Server 2008
.jpg)
Federation Service Malformed Requests logs information about incorrectly configured or missing data values that reside in the trust policy, along with information about client cookie issues and sign-on issues.
Event Details
| Product: | Windows Operating System |
| ID: | 709 |
| Source: | Microsoft-Windows-ADFS |
| Version: | 6.0 |
| Symbolic Name: | TtpCookieBadRealm |
| Message: | The pending sign-in request state specifies an unknown account partner. Partner URI: %1 This condition can occur if an account partner is deleted during a multipart sign-in request. |
Resolve
Configure the account partner to be trusted
An authentication request was sent to this Federation Service by a client that resides in an untrusted organization. The client failed to authenticate. If authentication requests coming from the untrusted organization should be accepted by this Federation Service, use the following procedure to create a new account partner to be trusted by this organization.
To perform this procedure, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority.
To add a new account partner:
- Click Start, point to Administrative Tools, and then click Active Directory Federation Services.
- In the console tree, double-click Federation Service, Trust Policy, and Partner Organizations.
- Right-click Account Partners, point to New, and then click Account Partner.
- On the Welcome to the Add Account Partner Wizard page, click Next, and then follow the steps in the wizard.
Verify
Verify that you can access the Active Directory Federation Services (AD FS)-enabled application from a client browser and that the resource can be accessed with the appropriate authorization.