Federation Service Proxy Communication
Applies To: Windows Server 2008
Successful communication between federation servers and federation server proxies can depend largely on whether client authentication certificates are valid or are configured correctly.
Events
| Event ID | Source | Message |
|---|---|---|
Microsoft-Windows-ADFS |
The Federation Service failed a privileged Web method call because Secure Sockets Layer (SSL) client authentication information was not available. This event can occur if the client does not provide a client certificate or if Internet Information Services (IIS) rejects the client's certificate because it does not chain to a trusted root certification authority in the Federation Service. User Action If this is a valid call from the Federation Service Proxy, ensure that the root of the Federation Service Proxy client certificate is trusted by the Federation Service. |
|
Microsoft-Windows-ADFS |
The Federation Service failed a privileged Web method call because the caller's client authentication certificate was not valid. Certificate thumbprint: %1 User Action If this certificate thumbprint corresponds to a valid Federation Service Proxy, ensure that the certificate is valid (for example, is not expired) and that it chains to a trusted root in the Federation Service. |
|
Microsoft-Windows-ADFS |
The Federation Service failed a privileged Web method call because the caller's client authentication certificate is not configured as a Federation Service Proxy certificate. Certificate thumbprint: %1 User Action Ensure that the trust policy is properly configured with all valid Federation Service Proxy certificates. |