| Event Id | 702 |
| Source | Microsoft-Windows-ADFS |
| Description | The Federation Service has detected a discrepancy between its signing and verification methods. If this condition is caused by a change in trust policy, the Federation Service will continue to use the old trust policy until the condition is resolved. If this condition occurs at startup, the Federation Service will not be able to service requests until the condition is resolved. Signing certificate thumbprint: %1 The signing method identifies a Subject Key Identifier (SKI) which is not recognized by the verification method. SKI: %2 User Action If a signing method is to be identified by the SKI, the verification method must contain the signing certificate. Add the signing certificate to the verification certificate list. |
| Event Information | According to Microsoft : Cause : This event is logged when the Federation Service has detected a discrepancy between its signing and verification methods Resolution : Add the signing certificate to the verification certificate list If a signing method is to be identified by the Subject Key Identifier (SKI), which is set to thumbprint by default, the verification method must contain the token-signing certificate of the proper SKI for that account partner. Add the token-signing certificate to the verification certificate list. To perform this procedure, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority. To add a token-signing certificate to the verification list of an account partner:
Verify that you can access the Active Directory Federation Services (AD FS)-enabled application from a client browser and that the resource can be accessed. |
| Reference Links | Event ID 702 from Source Microsoft-Windows-ADFS |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.