How to check if the certificate is expiring

Hello all,
Our environment has the ADFS on Office 365. I saw the message states that the certificate is expiring. Please see the screenshot below. How may I check if the certificate is expiring in 90 days.
Thanks

cert
dongocdungAsked:
Who is Participating?
 
Sajid Shaik MConnect With a Mentor Sr. System AdminCommented:
go to administrative tools - ADFS management console

adfs - services -certificates ..

u'll find all certificates with created and  expiry dates...

all the best..
0
 
dongocdungAuthor Commented:
Shaik,
Do you know how to use powershell to check the certificate for other servers beside ADFS server?
Thanks,
0
 
Mahesh SharmaConnect With a Mentor Commented:
Run cmdlet Get-AdfsCertificate -CertificateType "Token-Signing"


Let me know if it works
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
dongocdungAuthor Commented:
Shaik,
Do you know how to use powershell to check the certificate for other servers beside ADFS server?
Thanks,
0
 
Mahesh SharmaCommented:
Get-Certificate cmdlet we can use on other server.
http://technet.microsoft.com/en-us/library/hh848632.aspx
0
 
dongocdungAuthor Commented:
Hi MKS_,
I run your first command and got the error
Get-AdfsCertificate -CertificateType "Token-Signing"


The term 'Get-AdfsCertificate' is not recognized as the name of a cmdlet, funct
ion, script file, or operable program. Check the spelling of the name, or if a
path was included, verify that the path is correct and try again.
At line:1 char:20
+ Get-AdfsCertificate <<<<  -CertificateType "Token-Signing"
    + CategoryInfo          : ObjectNotFound: (Get-AdfsCertificate:String) [],
    CommandNotFoundException
    + FullyQualifiedErrorId : CommandNotFoundException

I am not sure that I can use the command in the article you gave me above because it is for Windows PowerShell 4.

Do I need to create this folder in order to let it work.

cert:\LocalMachine\My
Thanks,
0
 
Mahesh SharmaConnect With a Mentor Commented:
Try to run Add-PSSnapin Microsoft.Adfs.PowerShell before running Get-ADFSCertificate & then check


For powershell 2.0 try this cmdlet:
Get-ChildItem -Recurse | where { $_.notafter -le (get-date).AddDays(75) } | select thumbprint, subject

Replace 75 with no of days you want
0
 
dongocdungAuthor Commented:
The first command works but the second command runs but nothing returns. It is a blank screen.
0
 
becraigConnect With a Mentor Commented:
you can run this on each computer (from a powershell window)
Get-ChildItem cert:\LocalMachine\My -Recurse | where { $_.notafter -le (get-date).AddDays(30) } | select thumbprint, subject, notafter

Open in new window

0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.