If you cannot sign on using AD FS, there are two possibilities:
- Certificates for Common Services were updated.
In this scenario, if you cannot log in using AD FS, the following message is output to in the AD FS event log:
ID6013: The signature verification failed
For details on what to do when this message is output, see Updating the Common Services metadata by using AD FS.
- Certificates for AD FS were updated.
In this scenario, if you cannot log in using AD FS, the following message is output Common Services log file (default: /var/log/hitachi/CommonService/idp/log/server.log):
ERROR [org.keycloak.broker.saml.SAMLEndpoint] (default task-14) validation failed
For details on what to do when this message is output, see Specifying the AD FS metadata endpoint by using Common Services.