[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 879
  • Last Modified:

How to check if the certificate is expiring

Hello all,
Our environment has the ADFS on Office 365. I saw the message states that the certificate is expiring. Please see the screenshot below. How may I check if the certificate is expiring in 90 days.
Thanks

cert
0
dongocdung
Asked:
dongocdung
4 Solutions
 
Sajid Shaik MSr. System AdminCommented:
go to administrative tools - ADFS management console

adfs - services -certificates ..

u'll find all certificates with created and  expiry dates...

all the best..
0
 
dongocdungAuthor Commented:
Shaik,
Do you know how to use powershell to check the certificate for other servers beside ADFS server?
Thanks,
0
 
Mahesh SharmaCommented:
Run cmdlet Get-AdfsCertificate -CertificateType "Token-Signing"


Let me know if it works
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
dongocdungAuthor Commented:
Shaik,
Do you know how to use powershell to check the certificate for other servers beside ADFS server?
Thanks,
0
 
Mahesh SharmaCommented:
Get-Certificate cmdlet we can use on other server.
http://technet.microsoft.com/en-us/library/hh848632.aspx
0
 
dongocdungAuthor Commented:
Hi MKS_,
I run your first command and got the error
Get-AdfsCertificate -CertificateType "Token-Signing"


The term 'Get-AdfsCertificate' is not recognized as the name of a cmdlet, funct
ion, script file, or operable program. Check the spelling of the name, or if a
path was included, verify that the path is correct and try again.
At line:1 char:20
+ Get-AdfsCertificate <<<<  -CertificateType "Token-Signing"
    + CategoryInfo          : ObjectNotFound: (Get-AdfsCertificate:String) [],
    CommandNotFoundException
    + FullyQualifiedErrorId : CommandNotFoundException

I am not sure that I can use the command in the article you gave me above because it is for Windows PowerShell 4.

Do I need to create this folder in order to let it work.

cert:\LocalMachine\My
Thanks,
0
 
Mahesh SharmaCommented:
Try to run Add-PSSnapin Microsoft.Adfs.PowerShell before running Get-ADFSCertificate & then check


For powershell 2.0 try this cmdlet:
Get-ChildItem -Recurse | where { $_.notafter -le (get-date).AddDays(75) } | select thumbprint, subject

Replace 75 with no of days you want
0
 
dongocdungAuthor Commented:
The first command works but the second command runs but nothing returns. It is a blank screen.
0
 
becraigCommented:
you can run this on each computer (from a powershell window)
Get-ChildItem cert:\LocalMachine\My -Recurse | where { $_.notafter -le (get-date).AddDays(30) } | select thumbprint, subject, notafter

Open in new window

0

Featured Post

Vote for the Most Valuable Expert

It’s time to recognize experts that go above and beyond with helpful solutions and engagement on site. Choose from the top experts in the Hall of Fame or on the right rail of your favorite topic page. Look for the blue “Nominate” button on their profile to vote.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now