In our case, we had SSL errors in the eventlog of our (rarely used) development VM. We had to force adfs to update its certificates. This is only possible with a valid certificate. So we changed the system clock back.
This helped in our case:
- In Hyper-V Manager, go to "Settings." Under the "Management" section, uncheck the "Time synchronization" option. Click "Apply" and then "OK."
Do the next steps in the VM:
- Stop "Windows Time" (W32Time) Service (set to disabled)
- Clock: disable automatic time set
- in Powershell (as admin)
- Change system clock
Set-Date -Date (Get-Date).AddDays(-100)
- Update certificate:
Update-ADFSCertificate -CertificateType Token-Signing -Urgent
- Turn VM off (not reboot)
- Start Windows, start service: Active Directory Federation Service (adfssrv)
- revert all changes