1 All my users have the issue.
3. I get this :
Testing Single sign-on for user: tbrown@hallox.us.
Single sign-on test failed.
Test Steps
The Microsoft Connectivity Analyzer is attempting to retrieve domain registration and to validate federation status information for user tbrown@hallox.us.
Domain registration was retrieved and validated successfully.
Test Steps
The Microsoft Connectivity Analyzer is attempting to retrieve domain registration information for user tbrown@hallox.us from the Microsoft Org ID service.
The domain registration information was obtained successfully.
Additional Details
Successfully obtained domain registration information from the Microsoft Org ID service. Response: <RealmInfo Success="true">
<State>3</State>
<UserState>2</UserState>
<Login>tbrown@hallox.us</Login>
<NameSpaceType>Federated</NameSpaceType>
<DomainName>HALLOX.US</DomainName>
<FederationGlobalVersion>-1</FederationGlobalVersion>
<AuthURL>adfs.hallox.us/.../AuthURL>
<IsFederatedNS>true</IsFederatedNS>
<STSAuthURL>adfs.hallox.us/.../STSAuthURL>
<FederationTier>0</FederationTier>
<FederationBrandName>HALLOX.US</FederationBrandName>
<AllowFedUsersWLIDSignIn>false</AllowFedUsersWLIDSignIn>
<Certificate>MIIC4jCCAcqgAwIBAgIQGp5rB6BCTYxApmq7d5IeOzANBgkqhkiG9w0BAQsFADAtMSswKQYDVQQDEyJBREZTIFNpZ25pbmcgLSBobHgtaHlwcnYuaGFsbG94LmxvMB4XDTEzMDcyMjAxMzEzNVoXDTE0MDcyMjAxMzEzNVowLTErMCkGA1UEAxMiQURGUyBTaWduaW5nIC0gaGx4LWh5cHJ2LmhhbGxveC5sbzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANtNzUNtYnjAzqiZGo5I3240GjwZckbfrY/kRWb8tQDhIvBZz0t/4f4om9DEyJ69jbad5+QPXMXddRKhOIX44cV4xY92fITQhJWRyvHb+5aihuAU5n6p5FM+vwRHi34myy/FZL6CTktTj6KhJ0JzSpMLmBfW/JyMyO7WtKmr2Xtx4fTSrmk6XaPPMCcpfHJBsDx9XOmjRdb/mPGw6lhn5TAPoRsxujRsDmuMxhXO3cU9QbYATWtKKTrJcjNb6JTWIodbq4MuRpRgAWWFM01zyvXP0tQrlflp1lHu/WRhBRCB/73qcUwYLTEMVTF2quFEDkLf3NpIinAqFCZoXo9IUDUCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAn0QbS5QqOxhf+wFGaaci7cY/oB2HH8UcWR4EFC1KE29zu/VCXImgrBmrhPJx+W2lIH6HWq79ImZn1PVmOG8lmj0cErK3oi8D5tkMdbZfafxba5RtMgtebPy68Xvnwv0GdSUtzfFEmwsQdP4tGQxB0IHlhWruFCThmRq2ugIsSAKMs0bKn/B8MmQsvUbUhcXq4baImsjbDPtD2dIsZ0ofji65DKBP7a61xYIqlRpxodkuXtqdeIW6LiDrsAMAbK8GHT7Iu4gGmhzikjxlxtnwdPHGIqtscKjbFquEO0/ouga2g2CXPEteBqghISm+Hexm1rgssMKMzfAus7V2VqQDpQ==</Certificate>
<MEXURL>adfs.hallox.us/.../MEXURL>
<SAML_AuthURL></SAML_AuthURL>
<PreferredProtocol>1</PreferredProtocol>
<EDUDomainFlags>0</EDUDomainFlags>
</RealmInfo>
The Microsoft Connectivity Analyzer is analyzing the domain registration received for user tbrown@hallox.us.
No errors were found in the domain registration.
Attempting to resolve the host name adfs.hallox.us in DNS.
The host name resolved successfully.
Additional Details
IP addresses returned: 74.127.89.77
Testing TCP port 443 on host adfs.hallox.us to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The SSL certificate failed one or more certificate validation checks.
Test Steps
The Microsoft Connectivity Analyzer is attempting to obtain the SSL certificate from remote server adfs.hallox.us on port 443.
The Microsoft Connectivity Analyzer successfully obtained the remote SSL certificate.
Additional Details
Remote Certificate Subject: Sensitive!
Validating the certificate name.
The certificate name was validated successfully.
Additional Details
Host name adfs.mydomain.com was found in the Certificate Subject Common name.
Certificate trust is being validated.
Certificate trust validation failed.
Test Steps
The Microsoft Connectivity Analyzer is attempting to build certificate chains for certificate Sensitive!
A certificate chain couldn't be constructed for the certificate.
Additional Details
The certificate chain couldn't be built. You may be missing required intermediate certificates.