zub*_*oje 8 adfs windows-server-2012-r2 adfs3.0
我有使用SAML身份验证的应用程序,我们在2012 R2机器上安装了AD FS 3.0.我认为用户确实经过身份验证,但由于我的应用程序返回错误,因此存在问题,这里是我得到的响应头:
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store
Pragma: no-cache
Content-Length: 5851
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-HTTPAPI/2.0
P3P: CP="ADFS doesn't have P3P policy, please contact your site's admin for more details."
Set-Cookie: MSISAuthenticated=OC8xOC8yMDE1IDI6NTg6MzQgUE0=; path=/adfs; HttpOnly; Secure
Set-Cookie: MSISLoopDetectionCookie=MjAxNS0wOC0xODoxNDo1ODozNFpcMQ==; path=/adfs; HttpOnly; Secure
Date: Tue, 18 Aug 2015 14:58:34 GMT
现在问题是什么,据我所知,用户确实经过身份验证,但我的应用程序无法继续.搜索谷歌我发现此链接,但此KB安装在ADFS服务器上.我相信由于P3P错误,这是失败的.有什么建议?
在论坛中找到这个希望它对你们中的一些人有用:
\n\nRun theses commands (this is what ultimately worked):\n\nOn TptDevADFS1 (server with ADFS 3 installed).\n\nUsed this command file on TptDevADFS1:\nSETLOCAL\nSET cert_folder=%HOMEPATH%\\Documents\\Certificates\nIF NOT EXIST "%cert_folder%" md "%cert_folder"\nSET sdk_folder=C:\\Program Files (x86)\\Windows Kits\\8.1\\bin\\x64\nIF NOT EXIST "%sdk_folder%" ECHO SDK FOLDER %sdk_folder% NOT FOUND.\nIF NOT EXIST "%sdk_folder%" EXIT\nCD "%sdk_folder%"\necho makecert -r -pe -n "CN=*.TptDev.com" -ss my -sr LocalMachine -eku "1.3.6.1.5.5.7.3.1","1.3.6.1.4.1.311.10.3.12" -len 2048 -sky exchange -e "01/01/2021" "%cert_folder%\\TptDev.com_%COMPUTERNAME%_wildcard_exchDocSign.cer"\nENDLOCAL\nResulted in this command and output:\nC:\\Program Files (x86)\\Windows Kits\\8.1\\bin\\x64>makecert -r -pe -n "CN=*.TptDev.com" -ss my -sr LocalMachine -eku "1.3.6.1.5.5.7.3.1","1.3.6.1.4.1.311.10.3.12" -len 2048 -sky exchange -e "01/01/2021" "\\Users\\Administrator.TPTDEV\\Documents\\Certificates\\TptDev.com_TPTDEVADFS1_wildcard_exchDocSign.cer"\n\nSucceeded\n\nC:\\Program Files (x86)\\Windows Kits\\8.1\\bin\\x64>\nThe above command imported the certificate into\n(Local Computer) Personal->Certificates (aka as certificate store \xe2\x80\x9cMy\xe2\x80\x9d).\nThen browse to certificate file and imported it (with exportable key) to\n(Local Computer) Trusted Root Certificate Authorities->Certificates\nExport key in Personal store as PFX file with options:\ninclude private key, include all certs in chain, export all extended properties.\nCopy file to TptDevCRM1 (Server Dynamics CRM 2015 is installed on).\nOn TptDevCRM1 (server with Dynamics CRM 2015 installed)\n\nImported PFX certificate (file) into (Local Computer) Personal->Certificates.\nImported PFX certificate (file) into (Local Computer) Trusted Root Certificate Authorities->Certificates\n| 归档时间: |
|
| 查看次数: |
7571 次 |
| 最近记录: |