Ok I am at a loss for this. I ran the remote connectivity analyzer on this and it was pretty clean except for one thing. I am not sure if that would cause my problem with not getting the BINARYSECURITYTOKEN back from MSO.
Any ideas?
I get a message that I have pasted below :
ExRCA can only validate the certificate chain using the Root Certificate Update functionality from Windows Update. Your certificate may not be trusted on Windows if the "Update Root Certificates" feature isn't enabled.
Testing Single sign-on for user: myuse@mydomain.xyz.com
Single sign-on was verified successfully.
Test Steps
ExRCA is attempting to retrieve domain registration and to validate federation status information for user myuse@mydomain.xyz.com.
Domain registration was retrieved and validated successfully.
Test Steps
Attempting to resolve the host name mydomain.xyz.com in DNS.
The host name resolved successfully.
Additional Details
Testing TCP port 443 on host mydomain.xyz.com to ensure it's listening and open.
The port was opened successfully.
Testing the SSL certificate to make sure it's valid.
The certificate passed all validation requirements.
Test Steps
ExRCA is attempting to obtain the SSL certificate from remote server mydomain.xyz.com on port 443.
ExRCA successfully obtained the remote SSL certificate.
Additional Details
Validating the certificate name.
The certificate name was validated successfully.
Additional Details
Certificate trust is being validated.
The certificate is trusted and all certificates are present in the chain.
Test Steps
ExRCA is attempting to build certificate chains for certificate CN=*.xyz.com, O=mydoamin, L=mycity, S=mystate, C=US.
One or more certificate chains were constructed successfully.
Additional Details
Analyzing the certificate chains for compatibility problems with versions of Windows.
Potential compatibility problems were identified with some versions of Windows.
Additional Details
ExRCA can only validate the certificate chain using the Root Certificate Update functionality from Windows Update. Your certificate may not be trusted on Windows if the "Update Root Certificates" feature isn't enabled.
Testing the certificate date to confirm the certificate is valid.
Date validation passed. The certificate hasn't expired.
Additional Details
Validating ADFS metadata for the on-premises ADFS server.
The ADFS metadata was successfully validated.
Test Steps
ExRCA is attempting to retrieve and analyze a security token for user myuse@mydomain.xyz.com.
The security token was successfully retrieved, and no problems were found.
Test Steps