http://blogs.technet.com/adfs/archive/2007/07/23/adfs-certificates-ssl-token-signing-and-client-authentication-certs.aspxWe are seeing quite a few support calls relating to certificate problems. Many of these are due to a misunderstanding of how the various certificates are used. ADFS/PKI issues are often very difficult to diagnose for the following reason – a lack of loggingen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.technet.com/adfs/archive/2007/07/23/adfs-certificates-ssl-token-signing-and-client-authentication-certs.aspx#1791090Mon, 20 Aug 2007 21:21:49 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:1791090Dennis<p>I'm trying to create a certificate request for a 3rd-party CA. &nbsp;Using certreq.exe, I'm having trouble creating a template to work. </p> <p>Any suggestions?</p> http://blogs.technet.com/adfs/archive/2007/07/23/adfs-certificates-ssl-token-signing-and-client-authentication-certs.aspx#3214247Wed, 18 Mar 2009 00:03:33 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3214247jrfuste<p>If I use wildcard certificates generated by a 3rd party, I need to call all of my federated components like: adfsacct.domain.com, adfsrsc.domain.com, adfsprox.domain.com. Correct? &nbsp;All URLs must match the wildcard domain. Correct?</p> http://blogs.technet.com/adfs/archive/2007/07/23/adfs-certificates-ssl-token-signing-and-client-authentication-certs.aspx#3292920Tue, 10 Nov 2009 19:39:20 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3292920spyhunter99<p>I'm running into a situation where the CRL url on our ADFS cert occasionally goes down, taking out all authentication requests to sharepoint.</p> <p>The system in question is using tumbleweed as a CAPI.</p> <p>Is there a way to disable active certificate validation for ADFS? </p>