This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 3%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES1%3C/text%3E%3C/svg%3E)
Hi All,
We have 2 AD FS (2016) servers, and 2 WAP servers (2016) and recently renewed SSL certificate for ADFS. During the same time, ADFS service account password expired and we updated that as well.
SSL renewal steps:
Installed the cert with private key on all servers (2x ADFS & 2x WAPs).
Re-established the trust between ADFS and WAPs. Operations Status on WAP: Web Application Proxy, AD FS Proxy, Web Application Proxy Core are all Green and status shows Working.
But when I try to log in to Office from external network, the AD FS signing page shows the below error. Am I missing something here?
Service Unavailable
***HTTP Error 503. The service is unavailable.
Any help would be appreciated!
TIA
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 24%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
If anyone is still having issues with this, I would check the following:
HTTP Error 503. The Service is unavailable
Cause #1: Invalid base address entered in the SAML login redirection page field.
Solution #1: Make sure your base addresses match your application and ADFS. For example, if ADFS was assigned https://sso.contosso.com/ your application should reflect the same address, https://sso.contosso.com/.
Cause #2: The ADFS services are not running.
Solution #2: Check your service account has up-to-date credentials and start or restart your ADFS services.
Cause #3: Not pointing to the correct resource endpoint, specifically /ls.
Solution#3: Make sure your address is also pointing to the correct resources, /adfs/ls.
If anyone is still having issues with this, I would check the following:
Cause #1: Invalid base address entered in the SAML login redirection page field.
Solution #1: Make sure your base addresses match your application and ADFS. For example, if ADFS was assigned https://sso.contosso.com/ your application should reflect the same address, https://sso.contosso.com/.
Cause #2: The ADFS services are not running.
Solution #2: Check your service account has up-to-date credentials and start or restart your ADFS services.
Cause #3: Not pointing to the correct resource endpoint, specifically /ls.
Solution#3: Make sure your address is also pointing to the correct resources, /adfs/ls.