| Event Id | 104 |
| Source | Microsoft-Windows-ADFS |
| Description | The AD FS Web Agent for Windows NT token-based applications encountered a serious error. The cookies that were presented by the client could not be validated. This condition occurs when a client presents well-formed cookies that are not valid. If the client is known to be a valid user, this error might be caused by a transient issue. For instance, trust properties (for example, certificates) may have changed recently or revocation status may not be available from the certification authority. User Action Look for additional events in the security log that may contain more details. Consider enabling failure auditing on this Web server if auditing is not already enabled. |
| Event Information | According to Microsoft : Cause : This event is logged when the AD FS Web Agent for Windows NT token-based applications encountered a serious error. Resolution : Look for additional events in log files for more details Consider enabling failure auditing for the Windows NT token-based application to obtain more information about the issue. To perform this procedure, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority. To enable failure auditing for a Windows NT token-based application:
Verify that you can access the Active Directory Federation Services (AD FS)-enabled application from a client browser and that the resource can be accessed with the appropriate authorization. |
| Reference Links | Event ID 104 from Source Microsoft-Windows-ADFS |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.