asked on
Steps involved in ADFS certificate replacement
I have to replace the ADFS certificate on the server. How can I determine all the servers involved in ADFS.
I plan to use the following method:-
1. Import the new certificate into the server certificate store.
2. From the ADFS management console set services communications certificate and select the new certificate. Do the same for token signing. Restart ADFS service.
3. Run following command with the thumbprint of new cert:
Set-AdfsSslCertificate –Thumbprint xxxxxxxxxxxxxxxxxxxxxxxxxx
4. On the ADFS WAP server run following commands for the new cert thumbprint:-
Set-WebApplicationProxySsl
Set-WebApplicationProxyApp
Do we need to do something from the vendor side who use ADFS for sso?
And any other step to think of?
And if ADFS is used for Office 365 then are there more steps to follow?
I plan to use the following method:-
1. Import the new certificate into the server certificate store.
2. From the ADFS management console set services communications certificate and select the new certificate. Do the same for token signing. Restart ADFS service.
3. Run following command with the thumbprint of new cert:
Set-AdfsSslCertificate –Thumbprint xxxxxxxxxxxxxxxxxxxxxxxxxx
4. On the ADFS WAP server run following commands for the new cert thumbprint:-
Set-WebApplicationProxySsl
Set-WebApplicationProxyApp
Do we need to do something from the vendor side who use ADFS for sso?
And any other step to think of?
And if ADFS is used for Office 365 then are there more steps to follow?
Microsoft OfficeMicrosoft 365* Active Directory Federation Services (ADFS)
Last Comment
Kesavan Jeganarayanan
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.