Hello guys
We am facing a new issue when using Single Domain Certificate for two URL's.
Example : www.abc.com
123.abc.com
We have observed a behavior of CRM application where Single sign on does not work for production environments i.e. If we navigate from one CRM URL to another within the same browser session, it returns an error. This happens specifically between environments that have named certificates but works fine for environments that have Wildcard certificates.
The Error is as below:
Microsoft Dynamics 365 Error Report: Error Description: ID1014: The signature is not valid. The data may have been tampered with. Error Details: Not available Full Stack: [CryptographicException: ID1014: The signature is not valid. The data may have been tampered with.] at System.IdentityModel.RsaSignatureCookieTransform.Decode(Byte[] encoded) at System.IdentityModel.Tokens.SessionSecurityTokenHandler.ApplyTransforms(Byte[] cookie, Boolean outbound) at System.IdentityModel.Tokens.SessionSecurityTokenHandler.ReadToken(XmlReader reader, SecurityTokenResolver tokenResolver) at System.IdentityModel.Tokens.SessionSecurityTokenHandler.ReadToken(Byte[] token, SecurityTokenResolver tokenResolver) at System.IdentityModel.Services.SessionAuthenticationModule.ReadSessionTokenFromCookie(Byte[] sessionCookie) at System.IdentityModel.Services.SessionAuthenticationModule.TryReadSessionTokenFromCookie(SessionSecurityToken& sessionToken) at System.IdentityModel.Services.SessionAuthenticationModule.OnAuthenticateRequest(Object sender, EventArgs eventArgs) at Microsoft.Crm.Authentication.Claims.CrmSessionAuthenticationManager.OnAuthenticateRequest(Object sender, EventArgs args) at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)