comments (not for humans)
Michael Sutton has written a good post on Extended Validation (EV) SSL certificates: Will EV SSL Certificates Work?. Definitely worth a read.[...]
Making WSS4J work with WSE 2.0 and X509 tokens were quite easy, but after upgrading to WSE 3.0, things suddenly went bad. I kept getting error messages like "Illegal key size" and similar on the java side. In this blog entry you will find a working configuration for WSE 3.0 and WSS4J.
[...]
If you set connectionProtection to "Secure" on the membership provider in your web.config you may get an error in the event log saying "8009030e No credentials are available in the security package". This is because there is no suitable certificate installed on the server that ADAM can use. This blog-entry will try to help you resolve this issue.
[...]