Event ID 679 — Trust Policy and Configuration

Applies To: Windows Server 2008 R2

The Active Directory Federation Services (AD FS) trust policy file defines the set of parameters that a Federation Service requires to identify partners, certificates, account stores, claims, and the various properties of these entities that are associated with the Federation Service.

Event Details

Product: Windows Operating System
ID: 679
Source: Microsoft-Windows-ADFS
Version: 6.1
Symbolic Name: StartupFailure
Message: The Federation Service encountered an unexpected error while loading the trust policy: %1.

Because the Federation Service is not able to start, all requests will fail until the configuration is corrected.


Look for AD FS application event errors

An unexpected exception occurred when the Federation Service started. For the Federation Service to function correctly on this federation server, Internet Information Services (IIS) must be started.

To perform this procedure, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority.

To confirm that the IIS service is started:

  1. Click Start, point to Administrative Tools, and then click Services.
  2. In the details pane, double-click World Wide Web Publishing Service.
  3. In the World Wide Web Publishing Service Properties dialog box, on the General tab, confirm that Service status indicates Started, and then click OK. If the service is not started, click Start, and then click OK.

For more details about this issue, look for Active Directory Federation Services (AD FS) application event errors from IIS or ASP.NET in the event log.

For more information about troubleshooting IIS, see Troubleshoot Web Applications (http://go.microsoft.com/fwlink/?LinkId=110455).


Verify that you can access the Active Directory Federation Services (AD FS)-enabled application from a client browser and that the resource can be accessed.

Trust Policy and Configuration

Active Directory Federation Services