locked
ADFS 2.0 Sync problems RRS feed

  • Question

  • Hello, I currently have an ADFS Sync issue that has been bugging me.

    We have 1 Primary ADFS server and 1 Secondary ADFS server (also 2 proxies) in our live environment. The secondary server has stopped syncing to the primary for over a month.

    I did update our Token Signing and Decrypting certificates recently which might be causing this issue. The reason I say this is because if I use PowerShell to see what certificates are in the MY store the secondary it is showing an old Token Signing and Decrypting Certificate and not the new one that the Primary holds.

    I have also created a 3rd secondary ADFS server I wanted to use for testing and I get this error message (trying to do a sync) when I run through the ADFS 2 Wizard. 

    There was an error doing synchronization. Synchronization of data from the primary federation server to a secondary federation server did not occur.

    Additional data

    Exception details:

    System.ServiceModel.FaultException`1[Microsoft.IdentityServer.Protocols.PolicyStore.StoreConstraintFault]: ADMIN0066: ConstraintFault (Fault Detail is equal to Microsoft.IdentityServer.Protocols.PolicyStore.StoreConstraintFault).

    User Action

    Make sure the primary federation server is available or the service account identity of this machine matches the service account identity of the primary federation server.

     

    DNS is correct, the service account is correct and has read permissions on the certificate, the server has Rollup3 installed, time is correct and network settings. It's also not a firewall or basic network communications issues either.

    Any help would be appreciated.

    Many Thanks

    Wednesday, July 27, 2016 10:16 AM

All replies

  • Dears,

    Do we have any solution for this issue. I am facing the same issue.

    Many thanks in advance

    Tuesday, May 1, 2018 4:07 PM