Utilizing the Security Administration Certificates

Installing Security Administration will install two web apps. These applications will need to reference your generated certificates before they work correctly. Listed below are the places in the applications’ config they are referenced. If dealing with an MSI transform, you can change these properties to transform the MSI correctly, otherwise, you must manually change the values in the configs:

<Property Id="Global.KeyRepositoryCertificateThumbprint" Value="STS Key Protection Cert Thumbprint"/>
<Property Id="STS.SigningCertificateThumbprint" Value="STS OIDC Signing Cert Thumbprint" />
<Property Id="STS.WsFedSigningCertificateThumbprint" Value="STS OIDC Signing Cert or previous STSv2 signing cert Thumbprint" />
<Property Id="STS.RootCertificateThumbprint" Value="Root Certificate Thumbprint" />
<Property Id="STSAdmin.ClientCertThumbprint" Value="Security Administration Client Cert Thumbprint"/>

Note: Verify there are no special characters in the thumbprint.

Note: All certificates will be referred to by the names above.