Event ID 604 — Federation Service Malformed Requests

Applies To: Windows Server 2008

Federation Service Malformed Requests logs information about incorrectly configured or missing data values that reside in the trust policy, along with information about client cookie issues and sign-on issues.

Event Details

Resolve

Examine the URI of the account partner

This event occurs when the resource federation server is looking for an account partner whose Uniform Resource Identifier (URI) does not match the URI of any existing account partners. Examine the account partner discovery page (web.config) for errors.

If the user provided the whr parameter for home discovery, ensure that the URI in that parameter matches the URI of the account partner that is specified in the trust policy.

To perform this procedure, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority.

To check the URI of an account partner:

1. Click Start, point to Administrative Tools, and then click Active Directory Federation Services.
2. Double-click Federation Service, double-click Trust Policy, double-click Partner Organizations, and then double-click Account Partners.
3. Right-click the account partner, and then click Properties.
4. On the General tab, locate Federation Service URI box, and then check the URI value.

For more information about account partner discovery, see Federation Service (https://go.microsoft.com/fwlink/?LinkId=64784).

Verify

Verify that you can access the Active Directory Federation Services (AD FS)-enabled application from a client browser and that the resource can be accessed with the appropriate authorization.

Related Management Information

Federation Service Malformed Requests

Active Directory Federation Services