You need to import the DualShield SSO's CA certificate into the local computer certificate store as a root trusted CA on your ADFS server.
DualShield Console:
To export the CA certificate
ADFS Server:
To import the CA certificate
Furthermore, on the ADFS server, execute the following commands on the Windows Powershell console:
Add-PSSnapin Microsoft.Adfs.Powershell Set-ADFSClaimsProviderTrust -TargetName "Claims_Provider_Name" -SigningCertificateRevocationCheck None |
|---|
Similarly, if you are using a self-signed certificate for your relying party application, then you have to import the self-signed CA certificate into the local computer certificate store as a root trusted CA on your ADFS server. Then, execute the following commands on the Windows Powershell console:
Add-PSSnapin Microsoft.Adfs.Powershell Set-ADFSRelyingPartyTrust -targetname "Relying_Party_Name" -EncryptionCertificateRevocationCheck None |
|---|