TechInTheWoods
asked on
Update SSL Certificate on Windows Server 2012 AD FS Server
Getting ready to update certificate for AD FS running on Windows Server 2012, IIS 7.5. (Yes-I know updating this configuration is preferable, but it's not an option at this point)
Most documentation out there now is on updating certificates for AD FS is for server 2012 R2 and is very similar to 2012. However, documentation for 2012 R2 includes updating the SSL certificate using the set-adfssslcertificate Powershell cmdlet and the set-webapplicationproxycer tificate Powershell cmdlet if you are running the Web application to extend ADFS to the internet.
Source: How to Update Certificates in AD FS and Server 2012 R2
For both 2012 and 2012 R2 the token-decrypting and token signing certificate can be self-signed and auto-generating. Currently we have both set to autogenerate.
For both 2012 and 2012 R2 the service communications certificate has to come from a trusted 3rd party CA and can be updated the same way in both; via the certificates interface in AD FS Management.
Are there similar functions to update the SSL and web application proxy certificates for Server 2012 that work in place of the Powershell cmdlets that aren't supported in Server 2012? (The set-adfssslcertificate Powershell cmdlet and the set-webapplicationproxycer tificate Powershell cmdlets.)
Most documentation out there now is on updating certificates for AD FS is for server 2012 R2 and is very similar to 2012. However, documentation for 2012 R2 includes updating the SSL certificate using the set-adfssslcertificate Powershell cmdlet and the set-webapplicationproxycer
Source: How to Update Certificates in AD FS and Server 2012 R2
For both 2012 and 2012 R2 the token-decrypting and token signing certificate can be self-signed and auto-generating. Currently we have both set to autogenerate.
For both 2012 and 2012 R2 the service communications certificate has to come from a trusted 3rd party CA and can be updated the same way in both; via the certificates interface in AD FS Management.
Are there similar functions to update the SSL and web application proxy certificates for Server 2012 that work in place of the Powershell cmdlets that aren't supported in Server 2012? (The set-adfssslcertificate Powershell cmdlet and the set-webapplicationproxycer
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Yes, on all your ADFS servers you need to change the bindings.
ASKER
I assume on the AD FS server you would do the same?