I am setting up forms to authenticate users through LFDS instead of repository. This is part of a move from Avante to Rio licensing. I have accounts syncing through LFDS and I have turned on SSO and the page comes up correctly. Currently I am getting the error:

The identity check failed for the outgoing message. The expected identity is 'identity(http://schemas.xmlsoap.org/ws/2005/05/identity/right/possessproperty: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/spn)' for the 'http://*FQDNSERVERNAME*:5048/LicenseManager/service' target endpoint.

Note: **FQDNSERVERNAME* is the name of their server that I have omitted 

Has anyone seen this before? I am also having some current problems with their SSL certificates but I figured I should be able to connect forms to LFDS with their current settings.

The other symptom I am seeing is when I go to: https://localhost/LFDSsts on their server, it is blank but if I go to the FQDN server name/LFDSSTS it comes up with the single sign on page and I try and log in, I get an error. Error is:

Unable to log in: could not identify Laserfiche Directory Server site for user login.

Please note: LFDS, Forms and Repository are all on the same server.