Page created: 24 Jul 2019 |
Page updated: 8 Feb 2022
In Central Administration disable the Trusted Identity provider from the web
This step must be completed for each web application that is using that Trusted Identity provider (also known as the Partner STS or Trusted Identity Token Issuer).
deactivate the Ping Identity People Picker Claims Provider farm
deactivate the Ping Identity People Picker Claims Administration
retract the pingidentity.sharepoint.ppclaimsprovider.wsp
remove the pingidentity.sharepoint.ppclaimsprovider.wsp
- Open SharePoint Management Shell as an Administrator.
Make a backup copy of your configuration settings for your existing Trusted
Identity Token Issuer. For example: use this command tor produce a file called
partnersts.txt that contains your list of token issuers and their
Use this command to delete your current Trusted Identity Token Issuer:
Remove-SPTrustedIdentityTokenIssuer –Identity “<PartnerSTS>”
Replace <PartnerSTS> with the Name of your Trusted Identity Token Issuer.
- User PowerShell to recreate your SP Trusted Identity Token Issuer (without setting the default claims provider). You can refer to the partnersts.txt to review what settings you used previously.
- In Central Administration reconfigure the web application to use the newly created SPTrustedIdentityTokenIssuer.
(Optional) For a complete cleanup, you may also wish to remove the People
Picker configuration settings that were stored for each web application that you
configured to use the People Picker. This can be done by running the following
commands via the SharePoint Management Shell for each web application:
- Identify the web application by replacing <web app
URL> with the SharePoint Web Application’s URL:
$webApp = Get-SPWebApplication <web app URL>
- To view the settings associated for the web application:
- To remove the settings associated for the web application:
- Identify the web application by replacing <web app URL> with the SharePoint Web Application’s URL: