로컬 컴퓨터 개인 인증서 저장소에서 해당 인증서를 찾을 수 없습니다.
지정한 인증서가 로컬 인증서 저장소에 존재하지 않거나 AD FS 서비스 계정에 인증서에 액세스할 권한이 없습니다.
인증서(이벤트 텍스트의 지문으로 확인됨)가 페더레이션 서버 컴퓨터의 LocalMachine\My store 폴더에 추가되었는지 확인하십시오. 또한 AD FS 서비스 계정에 이 인증서에 대한 개인 키에 액세스할 수 있는 권한이 있는지 확인하십시오. 자세한 내용은 AD FS troubleshooting guide(AD FS 문제 해결 가이드)의 "Things to Check Before Troubleshooting AD FS(AD FS 문제 해결 전 확인할 사항)" 섹션을 참조하세요.
Target | Microsoft.ActiveDirectoryFederationServices.2016.FederationServer | ||
Category | ConfigurationHealth | ||
Enabled | True | ||
Event_ID | 249 | ||
Alert Generate | True | ||
Alert Severity | Warning | ||
Alert Priority | Normal | ||
Remotable | True | ||
Alert Message |
| ||
Event Log | $Target/Property[Type="Microsoft.ActiveDirectoryFederationServices.2016.FederationServer"]/ADFSEventLog$ |
ID | Module Type | TypeId | RunAs |
---|---|---|---|
DS | DataSource | Microsoft.Windows.EventProvider | Default |
Alert | WriteAction | System.Health.GenerateAlert | Default |
<Rule ID="Microsoft.ActiveDirectoryFederationServices.2016.FederationServerAdditionalCertificateLoadWarningRule" Enabled="true" Target="Microsoft.ActiveDirectoryFederationServices.2016.FederationServer" ConfirmDelivery="false" Remotable="true" Priority="Normal" DiscardLevel="100">
<Category>ConfigurationHealth</Category>
<DataSources>
<DataSource ID="DS" TypeID="Windows!Microsoft.Windows.EventProvider">
<ComputerName>$Target/Host/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</ComputerName>
<LogName>$Target/Property[Type="Microsoft.ActiveDirectoryFederationServices.2016.FederationServer"]/ADFSEventLog$</LogName>
<Expression>
<And>
<Expression>
<SimpleExpression>
<ValueExpression>
<XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>
</ValueExpression>
<Operator>Equal</Operator>
<ValueExpression>
<Value Type="UnsignedInteger">249</Value>
</ValueExpression>
</SimpleExpression>
</Expression>
<Expression>
<RegExExpression>
<ValueExpression>
<XPathQuery Type="String">PublisherName</XPathQuery>
</ValueExpression>
<Operator>MatchesMOM2005RegularExpression</Operator>
<Pattern>(^AD FS$)</Pattern>
</RegExExpression>
</Expression>
</And>
</Expression>
</DataSource>
</DataSources>
<WriteActions>
<WriteAction ID="Alert" TypeID="Health!System.Health.GenerateAlert">
<Priority>1</Priority>
<Severity>1</Severity>
<AlertOwner/>
<AlertMessageId>$MPElement[Name="Microsoft.ActiveDirectoryFederationServices.2016.FederationServerAdditionalCertificateLoadWarningRule.AlertMessage"]$</AlertMessageId>
<AlertParameters>
<AlertParameter1>$Data/Params/Param[1]$</AlertParameter1>
</AlertParameters>
<Suppression>
<SuppressionValue>$Data/Params/Param[1]$</SuppressionValue>
</Suppression>
<Custom1/>
<Custom2/>
<Custom3/>
<Custom4/>
<Custom5/>
<Custom6/>
<Custom7/>
<Custom8/>
<Custom9/>
<Custom10/>
</WriteAction>
</WriteActions>
</Rule>