Home
  •  

Security Token Service Cannot Create Signing Credential

Microsoft.SharePoint.2016.SPServiceInstance.SecurityToken.ClaimCantCreateSigningCredential (UnitMonitor)

A critical state of this Monitor indicates that SharePoint is unable to create the signing credentials to sign the security token. It is possible that the certificate is corrupt.

Knowledge Base article:

Summary

To get the most current Knowledge Article from the Microsoft TechNet site, visit:

http://go.microsoft.com/fwlink/?LinkId=244854

Causes

View all current alerts from this object using this link:

View Alerts

Element properties:

TargetMicrosoft.SharePoint.2016.SPServiceInstance.SecurityToken
Parent MonitorSystem.Health.AvailabilityState
CategoryAvailabilityHealth
EnabledTrue
Alert GenerateTrue
Alert SeverityMatchMonitorHealth
Alert PriorityNormal
Alert Auto ResolveTrue
Monitor TypeMicrosoft.Windows.SingleEventLogManualReset2StateMonitorType
RemotableTrue
AccessibilityPublic
Alert Message
SharePoint: Security Token Service Certificate Error

A critical incident has occurred where SharePoint is unable to create the signing credentials to sign the security token with the existing security certificate.

Event ID: {0}
Event Description: {1}
RunAsDefault

Source Code:

<UnitMonitor ID="Microsoft.SharePoint.2016.SPServiceInstance.SecurityToken.ClaimCantCreateSigningCredential" Accessibility="Public" Enabled="true" Target="MOSS16Core!Microsoft.SharePoint.2016.SPServiceInstance.SecurityToken" ParentMonitorID="Health!System.Health.AvailabilityState" Priority="Normal" TypeID="Windows!Microsoft.Windows.SingleEventLogManualReset2StateMonitorType">

  <Category>AvailabilityHealth</Category>

  <AlertSettings AlertMessage="Microsoft.SharePoint.2016.SPServiceInstance.SecurityToken.ClaimCantCreateSigningCredential_AlertMessageResourceID">

    <AlertOnState>Error</AlertOnState>

    <AutoResolve>true</AutoResolve>

    <AlertPriority>Normal</AlertPriority>

    <AlertSeverity>MatchMonitorHealth</AlertSeverity>

    <AlertParameters>

      <AlertParameter1>$Data/Context/EventDisplayNumber$</AlertParameter1>

      <AlertParameter2>$Data/Context/EventDescription$</AlertParameter2>

    </AlertParameters>

  </AlertSettings>

  <OperationalStates>

    <OperationalState ID="ManualResetEventRaised" MonitorTypeStateID="ManualResetEventRaised" HealthState="Success"/>

    <OperationalState ID="EventRaised" MonitorTypeStateID="EventRaised" HealthState="Error"/>

  </OperationalStates>

  <Configuration>

    <ComputerName>$Target/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</ComputerName>

    <LogName>Application</LogName>

    <Expression>

      <And>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value Type="UnsignedInteger">8304</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

        <Expression>

          <SimpleExpression>

            <ValueExpression>

              <XPathQuery Type="String">PublisherName</XPathQuery>

            </ValueExpression>

            <Operator>Equal</Operator>

            <ValueExpression>

              <Value Type="String">Microsoft-SharePoint Products-SharePoint Foundation</Value>

            </ValueExpression>

          </SimpleExpression>

        </Expression>

      </And>

    </Expression>

  </Configuration>

</UnitMonitor>