Using Wevtutil to capture and view the ADFS Debug log

When troubleshooting ADFS server-side issues it can be useful to turn on ADFS Debug logging on the server. To enable the ADFS debug event log: wevtutil sl “AD FS 2.0 Tracing/Debug” /E:true Running the same command with /E:False disables the debug logging again. After you have enabled it, repro the problem scenario and then run the…

0

Windows 8 features

The Win8 Product Teams have started blogging about new features in the upcoming Windows 8 release.  Windows 8 Server:Microsoft Server and Cloud Platform Bloghttp://blogs.technet.com/b/server-cloud/archive/tags/windows+server+8/ Windows 8 Client:Building Windows 8http://blogs.msdn.com/b/b8/ Not so much out there for  public details on the new Windows 8 Active Directory features so far unfortunately.Best bet for the impatient AD admin is…

1

Cached logons and CachedLogonsCount

A co-worker of mine had a case with the following description: We’ve set the CachedLogonsCount registry value to 1 on our workstations because we want to limit the number of cached user logons in the LSA cache on the system.However, this seems to have the side-effect of sometimes making it impossible for the user to log on to the laptop…

2

SENS and Sensibility

SENS is an acronym for the System Event Notification Service. On Windows XP/W2k3 SENS is baked into Winlogon – in Vista+ it is a separate service hosted by one of the svchost.exe instances on the system. SENS is purely informational and reactive – other components subscribe to SENS notifications or send notifications about their status…

0

The return of PAC-mania [AKA some reasons why PAC verification can fail]

There’s tons of good stuff out there on Kerberos PAC verification – but with current trends showing an increase in incoming cases related to this type of issue I though it would do me good to brush up on this and link the most relevant articles together. In short; PAC verification is the process where…

1

The Legacy of the Past Tense

When working with Microsoft technologies you’ll inevitably come across references to Legacy API’s, Legacy OS’s, etc. Have you ever wondered what that means in technical terms? Well, in technical terms this is just a reference to indicate that a newer piece of whatever API component or OS we’re discussing is available. This introduces the scenario where one day…

0

Bad Data error message in FIM CM web portal

A customer with a FIM CM installation called in with the following problem description: We have an issue with our FIM CM portal where some smartcards are failing unblock or retire operations.Some cards are working fine but others give a “Bad Data” error message when a management operation is attempted on them.Issuing new cards works…

0

CAPI2 event ID 11 retake

A customer put the following questions to one of my colleagues: On a lot of our Windows 7 clients we've noticed they periodically try to download a CAB file from Windows Update, but as our workstations are required to access the Internet via Proxy and they aren't able to authenticate against it the download fails and…

2

ADFS Event ID 364 on ADFS 2.0 proxy

Problem: The following is logged in the event log on an ADFS Proxy or ADFS Server: Log Name:      AD FS 2.0/AdminSource:        AD FS 2.0Date:          15.09.2011 14:28:16Event ID:      364Task Category: NoneLevel:         ErrorKeywords:      AD FSUser:          NETWORK SERVICEComputer:      ADFSProxy01Description:Encountered error during federation passive request. Additional Data:Exception details: System.ServiceModel.Security.MessageSecurityException: An unsecured or incorrectly secured fault was received from the…

0