基于ADFS证书的身份验证

时间:2016-06-02 11:48:25

标签: adfs windows-server

实施基于ADFS证书的身份验证。我收到以下错误。

异常详情:

  

System.ComponentModel.Win32Exception(0x80004005):用户名或密码不正确      在Microsoft.IdentityModel.Tokens.X509SecurityTokenHandler.KerberosCertificateLogon(X509Certificate2证书)      在Microsoft.IdentityModel.Claims.WindowsClaimsIdentity.CertificateLogon(X509Certificate2 x509Certificate)      在Microsoft.IdentityModel.Claims.WindowsClaimsIdentity.CreateFromCertificate(X509Certificate2 certificate,Boolean useWindowsTokenService,String issuerName)      在Microsoft.IdentityModel.Tokens.X509SecurityTokenHandler.ValidateToken(SecurityToken令牌)      在Microsoft.IdentityServer.Service.Tokens.MSISX509SecurityTokenHandler.ValidateToken(SecurityToken令牌)      在Microsoft.IdentityModel.Tokens.SecurityTokenHandlerCollection.ValidateToken(SecurityToken令牌)      在Microsoft.IdentityServer.Web.WSTrust.SecurityTokenServiceManager.GetEffectivePrincipal(SecurityTokenElement securityTokenElement,SecurityTokenHandlerCollection securityTokenHandlerCollection)      在Microsoft.IdentityServer.Web.WSTrust.SecurityTokenServiceManager.Issue(RequestSecurityToken请求,IList1& identityClaimSet)      在Microsoft.IdentityServer.Web.Protocols.PassiveProtocolHandler.SubmitRequest(MSISRequestSecurityToken请求,IList`1& identityClaimCollection)      在Microsoft.IdentityServer.Web.Protocols.PassiveProtocolHandler.RequestBearerToken(MSISRequestSecurityToken signInRequest,Uri& replyTo,IList1& identityClaimCollection)      在Microsoft.IdentityServer.Web.Protocols.PassiveProtocolHandler.RequestSingleSingOnToken(ProtocolContext context,SecurityToken securityToken,SecurityToken deviceSecurityToken)      在Microsoft.IdentityServer.Web.Protocols.WSFederation.WSFederationProtocolHandler.BuildSsoSecurityToken(WSFederationSignInContext context,SecurityToken securityToken,SecurityToken deviceSecurityToken,SecurityToken& ssoSecurityToken)      在Microsoft.IdentityServer.Web.Protocols.WSFederation.WSFederationProtocolHandler.ProcessSingleSignOn(ProtocolContext context)      在Microsoft.IdentityServer.Web.PassiveProtocolTlsClientListener.ProcessProtocolRequest(ProtocolContext protocolContext,PassiveProtocolHandler protocolHandler)      在Microsoft.IdentityServer.Web.PassiveProtocolTlsClientListener.OnGetContext(WrappedHttpListenerContext context)

1 个答案:

答案 0 :(得分:0)

您的进程在其下运行的用户帐户是否可以访问证书存储中的私钥?如果没有,请通过MMC->证书 - >所有任务 - >管理私钥,并确保该帐户(假设它不是您的帐户)在该列表中。

相关问题
最新问题