| Event Id | 720 |
| Source | Microsoft-Windows-ADFS |
| Description | The Federation Service has encountered an error while loading the trust policy. A resource partner with Windows trust enabled also has enhanced identity privacy enabled. Resource partner URI: %1 |
| Event Information | According to Microsoft : Cause This event is logged when the Federation Service encountered an error while loading the trust policy. f this error occurs during startup of the Federation Service, the Federation Service will be not be able to start, and all requests to the Federation Service will fail until the configuration is corrected. If this error occurs while the Federation Service is running, the Federation Service will continue to use the last trust policy that was loaded successfully. Resolution Disable enhanced identity privacy or Windows trust for the resource partner in question This error occurs only if the trust policy (trustpolicy.xml) file has been modified without the use of the Active Directory Federation Services snap-in. Enhanced identity privacy and Windows trust cannot coexist. Disable either enhanced identity privacy or Windows trust for the resource partner in question. To perform these procedures, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority. To disable enhanced identity privacy on a resource partner: 1.In Notepad or another text editor, open the trustpolicy.xml file, which, by default, is in %systemdrive%\windows\systemdata\adfs. 2.Change the value of the UseEnhancedIdentityPrivacy element from false to true. 3.Save and close Notepad. To disable Windows trust for a resource partner: 1.In Notepad or another text editor, open the trustpolicy.xml file, which by default is in %systemdrive%\windows\systemdata\adfs. 2.Change the value of the IsWindowsRealm element from true to false. 3.Save and close Notepad. Verify Verify that you can access the Active Directory Federation Services (AD FS)-enabled application from a client browser and that the resource can be accessed. |
| Reference Links | Event ID 720 from Source Microsoft-Windows-ADFS |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.