Search This Blog

Thursday, July 16, 2015

Error “SSL certificate does not contain all upn suffix values that exist in the Enterprise”

 

Encountered error message “SSL certificate does not contain all upn suffix values that exist in the Enterprise”  when Enable Device Registration.

2

Scenario:

a) Using wildcard SSL certificate. Example: *.ms4ucloud.info

b) Setup ADFS and did not use UPN suffix enterpriseregistration.upn suffix

[Resolution]

Add an additional custom UPN suffix that you can use to register a device with ADFS

PS C:\Users\laiys.MS4UCLOUD\Desktop> Add-AdfsDeviceRegistrationUPNSuffix -UPNSuffix enterpriseregistration.ms4ucloud.info

image

Make sure you have added

- a DNS record of your ADFS Federation Name

-CNAME enterpriseregistration.UPNsuffix point to ADFS Federation name

image