Microsoft EMS – Intune – ADFS federation relying party trust secure hash algorithm

Hi, here’s Martin again with a short blogpost about the ADFS federation for Intune.

I was going through the Options of the ADFS Infrastructure after reading this very interesting Blog on TechNet from David Gregory:
http://blogs.technet.com/b/askpfeplat/archive/2015/03/02/adfs-deep-dive-onboarding-applications.aspx

There is the Secure Hash algorithm Pointed out:

The relying party trust in ADFS must be configured with the correct secure hash algorithm. Most SAML applications will support SHA-1 while most WS-Fed applications will support SHA-256.

Well then, I was going on to my ADFS Farm (actually it isn’t a farm, only one Server 🙂 ), and changed the secure hash algorithm to SHA-256 on the “Microsoft Office 365 Identity Platform” relying Party trust and changed the secure hash algorithm:
Change Secure Hash Algorithm
Afterwards I was still able to Login to Office365 Service, and also some other ADFS related Services, except the Intune Service (on normal Browser and on the mobile Devices). I always ended up with a short, not much saying error message on a mostly Grey Webpage, which was telling me:
An unexpected error has occurred.
An error occurred while processing your request.
Unexpected Error

After changing back the secure hash algorithm to SHA-1, everthing works fine. Unfortunately I can’t find official Information about this Topic, but I will leave an eye on this.

One thought on “Microsoft EMS – Intune – ADFS federation relying party trust secure hash algorithm

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s