This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Knowledge Base

Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID experts.

ADFS fails to authenticate due to certificate mismatch error

Article Number

000039789

Applies To

RSA Product Set:  SecurID
RSA Product/Service Type:  Authentication Agent for AD FS
RSA Version/Condition:  2.0

Issue

ADFS fails to authenticate against RSA Authentication manager on premise and while checking the logs from the below Path,

C:\Program Files\RSA\RSA Authentication Agent\AD FS MFA Adapter\logs\rsa_adfs, Found the below

2021-06-23 13:53:56,600 [15] ERROR SecuritySettings - ADFSCertificateValidator: Error in Server certificate validation: Certificate Name Mismatch
2021-06-23 13:53:56,613 [15] ERROR ConnectionHandler - DefaultExceptionFactory: Connection failed with a non-HTTP error. status = 0
2021-06-23 13:53:56,634 [15] ERROR ConnectionHandler - DefaultExceptionFactory: Handling a WebException. Status = TrustFailure, Response.ResponseUri =

 

Cause

While AM is communicating with the ADFS to validate the credentials, ADFS is failing to populate the AM certificate.

Resolution

Two solutions proved eligibility in this scenario,
  1. If getting a new signed certificate needs time, use the Authentication manager default certificate (optional). Reverting back to the RSA self-signed default certificates
  2. Replace the console certificate with a PFX certificate.

Import the new root certificate again on the ADFS server.

For certificate export, import, and similar server certificate validation error, refer resolution section of Server certificate validation error when trying to authenticate using the RSA Authentication Agent 2.0 for AD FS
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2021-07-15 10:32 AM
Updated by:
Administrator Administrator

Related Content

© 2023 RSA Security LLC or its affiliates. All rights reserved.