ADFS 3.0 Error: The Web request failed because the web.config file is malformed

综合技术 2016-04-23

Had a strange one today after an Azure outage. One of my Server 2012 R2 ADFS proxies wouldn’t start the ADFS service.

When looking in the logs, it appeared like a case of simply having to re-establish the proxy trust
, but I got a different error when trying to start the service:

The federation server proxy could not be started.

Reason: Error retrieving proxy configuration from the Federation Service.

Additional Data

Exception details:

An error occurred when attempting to load the proxy configuration.

There were other errors in the ADFS Event logs about a malformed config file:

The Web request failed because the web.config file is malformed.

User Action:

Fix the malformed data in the web.config file.

Exception details:

Root element is missing. (C:WindowsADFSConfigmicrosoft.identityServer.proxyservice.exe.config)

Root element is missing.

When I opened the abovementioned config file, it was empty. I compared this to the config file on the other ADFS proxy, and that one looked like a normal config file.

My solution, and what ended up fixing the issue in the end, was simply to copy the contents of the .config file from the working ADFS proxy to the broken one. I could then re-establish the proxy trust, and everything started running again.

I’m not sure if this would work, but in case you don’t have another ADFS proxy to grab the config file from, here’s a sanitised version of mine:













<congestionControl latencyThresholdInMSec="8000" minCongestionWindowSize="64"

enabled="true" />









<trust thumbprint="FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF"

proxyTrustRenewPeriod="21600" />



<!--



<messageLogging logEntireMessage="true"

logMessagesAtServiceLevel="true"

logMessagesAtTransportLevel="true">





-->

Once I’d resolved the problem, I did a bit of searching around for this error message, and it appears that other people have had the same problem previously, with no resolution listed in the one thread
that I looked at on the TechNet forums.

责编内容by:User Error (源链)。感谢您的支持!

您可能感兴趣的

Resolving the ‘Double Auth’ prompt issue in ADFS w... As mentioned in my previous post, Using ADFS on-premises MFA with Azure AD Cond...
Using ADFS on-premises MFA with Azure AD Condition... With the recent announcement of General Availability of the Azure AD Conditiona...
Password Spraying As we are witnessing many organizations moving aggressively towards cloud-bas...
Using ADFS on-premises MFA with Azure AD Condition... With the recent announcement of General Availability of the Azure AD Conditiona...
What functionality does ADFS provide that is not i... I'm trying to figure out the right architecture from a mix of current .NET au...