Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. You cannot log in to Microsoft Dynamics CRM 2011 after renewing the IFD certificate

You cannot log in to Microsoft Dynamics CRM 2011 after renewing the IFD certificate

Symptoms

After renewing the Microsoft Dynamics CRM Internet Facing Deployment (IFD) Certificate through the Microsoft Dynamics CRM Deployment Manager, an AD FS generic error message is shown when you try to log into CRM. Additionally, the following error message can be found in the Event Viewer on the AD FS server:

 Microsoft.IdentityServer.Web.RequestFailedException: MSIS7012: An error occurred while processing the request. Contact your administrator for details. ---> Microsoft.IdentityServer.Protocols.WSTrust.StsConnectionException: MSIS7004: An exception occurred while connecting to the federation service. The service endpoint URL 'net.tcp://localhost:1501/adfs/services/trusttcp/windows' may be incorrect or the service is not running. ---> System.ServiceModel.EndpointNotFoundException: There was no endpoint listening at net.tcp://localhost:1501/adfs/services/trusttcp/windows that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details.

↑ Back to the top

Cause

AD FS 2.0 Service Communications certificate is missing in AD FS.

↑ Back to the top

Resolution

Configure the AD FS Server service to use the new or existing certificate. To do this, follow these steps:

1.  Open AD FS 2.0 Management.
2.  Browse to AD FS 2.0\Service\Certificates.
3.  Right-click Certificates, and then select Set Service Communications Certificate.
4.  Select the new certificate from the certificate selection UI.
5.  Click OK.

↑ Back to the top

More Information

It is recommended to follow all the steps found in the KB 2504439 in order to check whether the ADFS settings are correct.

How to change the ADFS 2.0 service communications certificate after it expires
http://support.microsoft.com/KB/2921805

↑ Back to the top

Keywords: kbmbsmigrate, kbmbspartner, vkball, kb

↑ Back to the top

Article Info
Article ID : 2804284
Revision : 1
Created on : 1/8/2017
Published on : 3/4/2014
Exists online : False
Views : 204