Export the certificate from the LoadMaster by going to Virtual Services > Manage SSO, clicking Modify on the SAML SSO domain and clicking Download.

To import the certificate in AD FS, follow the steps below:

  1. Select the Signature tab.
  2. Click Add.
  3. Browse to and select the certificate that was downloaded from the LoadMaster.

    Note: In the context of log out processing – the service provider signs the log out request message. Therefore, on the AD FS side – there must be a certificate to verify that the signature is accurate and correct for the message that was signed on the service provider.
  4. Click OK.