Event ID 604 — Federation Service Malformed Requests
Applies To: Windows Server 2008
Federation Service Malformed Requests logs information about incorrectly configured or missing data values that reside in the trust policy, along with information about client cookie issues and sign-on issues.
|Product:||Windows Operating System|
|Message:||The account partner discovery page called the RedirectToAccountFederationPartner application programming interface (API) with a Uniform Resource Identifier (URI) that does not identify any known account partner.
Examine the account partner discovery page for errors.
Examine the URI of the account partner
This event occurs when the resource federation server is looking for an account partner whose Uniform Resource Identifier (URI) does not match the URI of any existing account partners. Examine the account partner discovery page (web.config) for errors.
If the user provided the whr parameter for home discovery, ensure that the URI in that parameter matches the URI of the account partner that is specified in the trust policy.
To perform this procedure, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority.
To check the URI of an account partner:
- Click Start, point to Administrative Tools, and then click Active Directory Federation Services.
- Double-click Federation Service, double-click Trust Policy, double-click Partner Organizations, and then double-click Account Partners.
- Right-click the account partner, and then click Properties.
- On the General tab, locate Federation Service URI box, and then check the URI value.
For more information about account partner discovery, see Federation Service (http://go.microsoft.com/fwlink/?LinkId=64784).
Verify that you can access the Active Directory Federation Services (AD FS)-enabled application from a client browser and that the resource can be accessed with the appropriate authorization.