In the online help file it states, "Directory Server and the STS do not need to use the same certificate. However, the certificate for the STS must be authorized by the same issuer that issued the certificate used by Directory Server."
Does the same hold true for an STS in a DMZ? It does not specify so I want to clarify if it does or not.