Encountered error message “SSL certificate does not contain all upn suffix values that exist in the Enterprise” when Enable Device Registration.
Scenario:
a) Using wildcard SSL certificate. Example: *.ms4ucloud.info
b) Setup ADFS and did not use UPN suffix enterpriseregistration.upn suffix
[Resolution]
Add an additional custom UPN suffix that you can use to register a device with ADFS
| PS C:\Users\laiys.MS4UCLOUD\Desktop> Add-AdfsDeviceRegistrationUPNSuffix -UPNSuffix enterpriseregistration.ms4ucloud.info |
Make sure you have added
- a DNS record of your ADFS Federation Name
-CNAME enterpriseregistration.UPNsuffix point to ADFS Federation name
