FIM 2010 R2: <Certificate Type> certificate is not defined, is close to its expiry date or has already expired.
This topic is intended to address a specific issue identified by a Best Practices Analyzer scan. You should apply the information in this topic only to computers that have had the Forefront Identity Manager 2010 R2 Best Practices Analyzer run against them and are experiencing the issue addressed by this topic. For more information about best practices and scans, see Best Practices Analyzer (https://go.microsoft.com/fwlink/?LinkId=122786).
Product |
Forefront Identity Manager 2010 R2 |
Feature |
FIM Certificate Management |
Operating System |
Windows Server 2008 R2 |
Severity |
Warning |
Category |
Security |
Issue
<Certificate Type> certificate is not defined, is close to its expiry date or has already expired.
.png "Certificate Type expiration")
Impact
FIMCM – Certificate Management may stop functioning correctly once the certificate expires.
Resolution
FIMCM – Ensure that a valid <Certificate Type> certificate is present and not close to its expiry date.
Certificate Type may be any one of the following:
Encryption
Enrollment
Signing
Smart card exchange
To resolve this, ensure that the certificate is present and that it is not close to it’s expiration date.
Additional references
For more information, see the FIM 2010 R2 Deployment Guide (https://technet.microsoft.com/en-us/library/jj134310(v=ws.10))