기본 ADFS 서버인 Windows Server 2016 Active Passive ADFS 서버를 실행하고 있습니다.ADFS01-VM다음 단계를 사용하여 올바르게 설정되었습니다.https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/deployment/install-the-ad-fs-role-service
SSL SAN 인증서 *.domain.com을 기본 서버에서 문제 없이 가져왔습니다.
그러나 ADFS02-VM이라는 보조 서버로 이동하면 아래와 같은 오류가 표시됩니다.
또한 다음에 설명된 단계를 실행했습니다.https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/Operations/ad-fs-support-for-alternate-hostname-bound-for-certificate-authentication
기본 DFS 서버 아래ADFS01-VM
Set-AdfsAlternateTlsClientBinding -Member ADFS02-VM.DOMAIN.com -Thumbprint 'B6DA73B83A759DEE37F975668266FE92B4E5F788'
오류 메시지는 다음과 같습니다.
Set-AdfsAlternateTlsClientBinding :
PS0317: One or more of AD FS servers returned errors during execution of command 'Set-AdfsAlternateTlsClientBinding'.
Error information:
PS0316: AD FS Server: 'localhost', Error: 'The specified SSL certificate with thumbprint 'B6DA73B83A759DEE37F975668266FE92B4E5F788' does not meet the requirements for configuring alternate Tls Client binding. For more information see http://go.microsoft.com/fwlink/?LinkId=613586.'.
PS0316: AD FS Server: 'ADFS02-VM.DOMAIN.com', Error: 'The specified SSL certificate with thumbprint 'B6DA73B83A759DEE37F975668266FE92B4E5F788' does not meet the requirements for configuring alternate Tls Client binding. For more information see http://go.microsoft.com/fwlink/?LinkId=613586.'.
At line:1 char:1
+ Set-AdfsAlternateTlsClientBinding -Member ADFS02-VM.DOMAIN.com -Th ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (:) [Set-AdfsAlternateTlsClientBinding], RemoteException
+ FullyQualifiedErrorId : RuntimeException,Microsoft.IdentityServer.Management.Commands.SetAlternateTlsClientBinding
어떤 도움이라도 대단히 감사하겠습니다.