Single sign on ADFS:在windows server 2012上建立SSO连接时出错

Single sign on ADFS:在windows server 2012上建立SSO连接时出错,single-sign-on,adfs,windows-server,Single Sign On,Adfs,Windows Server,当我从代码中访问sing on url()以建立与adfs的连接时,得到的错误为: A WS-Trust endpoint that was configured could not be opened. Additional Data Address: https://win-3723jtvfe02.abcd.avcd.ac/adfs/services/trust/2005/windowstransport Mode: WindowsTransport Error: MSI

当我从代码中访问sing on url()以建立与adfs的连接时,得到的错误为:

A WS-Trust endpoint that was configured could not be opened. 

Additional Data 
Address: https://win-3723jtvfe02.abcd.avcd.ac/adfs/services/trust/2005/windowstransport 
Mode:    WindowsTransport 

Error: 
MSIS0006: A Service Principal Name is not registered for the AD FS service account. 
我还收到如下警告:

The SSL certificate does not contain all UPN suffix values that exist in the enterprise. 
Users with UPN suffix values not represented in the certificate will not be able to Workplace-Join their devices.

请帮我解决这个问题。

对于SPN问题,您需要注册它。technet上有一篇很好的文章:

如果您没有使用ADFS 2012 R2的Workplace Join功能,那么您不必担心其他错误。但是,如果您确实想解决此问题,请查看此处的文档: