Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

FIX: An error occurs when you use a third-party CSP and HSM and then configure a claims provider trust in Update Rollup 3 for AD FS 2.0 on Windows Server 2008 R2 Service Pack 1

View products that this article applies to.

Symptoms

Consider the following scenario:

You apply Update Rollup 3 for Active Directory Federation Services (AD FS) 2.0 to a server that is running Windows Server 2008 R2 Service Pack 1.
You use a third-party Cryptographic Service Provider (CSP) and Hardware Security Module (HSM) to generate and store private keys.
You configure ADFS 2.0 Token Signing to use a certificate that is issued by an HSM.

In this scenario when you configure a claims provider trust, you receive the following error message:

An error occurred during an attempt to read the federation metadata.

↑ Back to the top

Cause

This problem occurs because of incorrect metadata generation.

↑ Back to the top

Resolution

To resolve this problem, apply security update 2843638 .

↑ Back to the top

Status

Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.

↑ Back to the top

References

See the terminology Microsoft uses to describe software updates .

↑ Back to the top

Applies to:

Windows Server 2008 R2 Service Pack 1

↑ Back to the top

Keywords: kbqfe, kbfix, kbexpertiseinter, kbsurveynew, kbbug, kb

↑ Back to the top

Article Info

Article ID	:	2873168
Revision	:	1
Created on	:	1/7/2017
Published on	:	9/3/2013
Exists online	:	False
Views	:	181