ADFS SSL Certificate Expired
Topic Last Modified: 2011-06-13
The Microsoft Remote Connectivity Analyzer tool queries the Authentication Platform in the cloud to perform a realm discovery. When that process is finished, the Authentication Platform passes to the requesting client the ADFS endpoint URL that the client requires for authentication. The endpoint will be a Secure Sockets Layer (SSL) connection, which will have a certificate in place. The tool evaluates the fully qualified domain name (FQDN) that was assigned to the certificate (for example, STS.Contoso.com).
The Remote Connectivity Analyzer displays a certificate trust warning when the certificate that is used for SSL has expired. This indicates that the certificate is not valid and that users will not be able to authenticate correctly to their Office 365 resources. If this issue occurs, the passive (Internet Explorer) access to the Office 365 services fails to connect, and it generates a similar warning when the user tries to access a web page.
For information about how to troubleshoot this issue, see Microsoft Knowledge Base article 2523494, You receive a certificate warning when you try to access Microsoft Office 365 resources by using an identity-federated account
For more information planning for identity federation, see Prepare for single sign-on
For help to upgrade your current Exchange 2010 environment, see Exchange Server Deployment Assistant