Today I had a call from a customer because they had expired certificates in their ADFS farm. Once I acceded to the farm, I realized that the expired certificates were the token signing and token decrypting certificates.
So, the first thing that I did, was to extend the certificate window expiration:
Set-ADFSProperties -CertificateDuration 36500
Then, update the expired certificates
Update-ADFSCertificate -CertificateType Token-Signing -Urgent
Update-ADFSCertificate -CertificateType Token-Decrypting -Urgent
And finally to restore the Office365 Enpoint, the following commands:
$cred=Get-Credential
Connect-MsolService –Credential $cred
Update-MSOLFederatedDomain –DomainName “DomainName” -SupportMultipleDomain
*In my case I needed to set this parameter
And that’s all!
Till next time
Albandrod's Memory 