[PS] C:\Windows\system32>Test-FederationTrust -UserIdentity Test@olivertest.site
Begin process.
STEP 1 of 6: Getting ADUser information for Test@olivertest.site...
RESULT: Success.
STEP 2 of 6: Getting FederationTrust object for Test@olivertest.site...
RESULT: Success.
STEP 3 of 6: Validating that the FederationTrust has the same STS certificates as the actual certificates published by the STS in the federation metadata.
RESULT: Success.
STEP 4 of 6: Getting STS and Organization certificates from the federation trust object...
WARNING: Could not retrieve orgPrivCertificate from GetOrganizationCertificates
Closing Test-FederationTrust...
RunspaceId : e6e79ace-6411-41cc-bceb-df4267e68d7b
Id : FederationTrustConfiguration
Type : Success
Message : FederationTrust object in ActiveDirectory is valid.
RunspaceId : e6e79ace-6411-41cc-bceb-df4267e68d7b
Id : FederationMetadata
Type : Success
Message : The federation trust contains the same certificates published by the security token service in its
federation metadata.
RunspaceId : e6e79ace-6411-41cc-bceb-df4267e68d7b
Id : StsCertificate
Type : Success
Message : Valid certificate referenced by property TokenIssuerCertificate in the FederationTrust object.
RunspaceId : e6e79ace-6411-41cc-bceb-df4267e68d7b
Id : StsPreviousCertificate
Type : Success
Message : Valid certificate referenced by property TokenIssuerPrevCertificate in the FederationTrust object.
RunspaceId : e6e79ace-6411-41cc-bceb-df4267e68d7b
Id : OrganizationCertificate
Type : Error
Message : Certificate referenced by property OrgPrivCertificate in the FederationTrust object is expired.
Error: GetOrganizationCertificates(federationTrust) returned null when called in Process()
+ CategoryInfo : NotSpecified: (:) [], LocalizedException
+ FullyQualifiedErrorId : [Server=EX2016,RequestId=e2c5044d-0901-426a-8c7f-fdf80ea72cec,TimeStamp=7/3/2021 10:00:45 AM] [FailureCategory=Cmdlet-LocalizedException] 531E662F
+ PSComputerName : ex2016.olivertest.site
Step 4 with warning, and the step 6 with error said the "FederationTrust object is expired." however this is the new created federation trust in Exchange 2016 EAC, and also I tried manually remove and re-create but the same issue persists, please help, thanks.
Oliver
