Currently on the latest version of 11 for everything.

I'm in the process of working towards upgrading to LF 12.  I'm trying to get Weblink to use LFDS.  In Weblink designer I check Enable LFDS put in the URL, change the connection to LFDS Account and i'm always met with a sign in with: Windows Authentication. I cannot sign in with my windows credentials.  Furthermore when I try Incognito I would expect it would use one of the Public licenses but it does not.  

IIS is set to Anonymous and Windows Authentication. useAppPoolCredentials is True, useKernalMode is True, the app pool is set with admin credentials.  Basically setup identical to my Web Client and Forms configs.  

In LFDS where it says "How would public users access WebLink?" I only have none and users (10), I do not have the multiprocessor option that I see a lot on here.  

web.config file current setup FQDN is our site     
<cookieHandler requireSsl="true" name="LMAuth" path="/WebLink" />
<wsFederation persistentCookiesOnPassiveRedirects="true" passiveRedirectEnabled="false" issuer="https://FQDN/LFDSSTS/" realm="https://FQDN/weblink/" homeRealm="urn:laserfiche:lfdsdb:lfds" requireHttps="true" />

I believe I have a few errors in event viewer that might be useful but they aren't making heads or tails to me.  

Event 1, WebSTS
An error has occurred
STS.Core.Infrastructure.Exceptions.WebSTSException: An error has occurred ---> System.Exception: Unable to log in: could not identify Laserfiche Directory Server site for user login. - I'm using the same URL I use in formsconfig

Event 12, Server (Laserfiche-Portal-Server)
Message: Exception encountered, stack trace:\r\n WebLink.LFDSHelper.AddLFDSSigningKeyFromLicenseFile\r\n  WebLink.Global.Application_Start\r\n  System.RuntimeMethodHandle.InvokeMethod\r\n  System.Reflection.RuntimeMethodInfo.UnsafeInvokeInternal\r\n  System.Reflection.RuntimeMethodInfo.Invoke\r\n  System.Reflection.MethodBase.Invoke\r\n  System.Web.HttpApplication.InvokeMethodWithAssert\r\n  System.Web.HttpApplication.ProcessSpecialRequest\r\n  System.Web.HttpApplicationFactory.EnsureAppStartCalledForIntegratedMode\r\n  System.Web.HttpApplication.RegisterEventSubscriptionsWithIIS\r\n  System.Web.HttpApplication.InitSpecial\r\n  System.Web.HttpApplicationFactory.GetSpecialApplicationInstance\r\n  System.Web.Hosting.PipelineRuntime.InitializeApplication\r\nException details:\r\n  Caught exception ArgumentNullException, Message: Value cannot be null.\r\nParameter name: keyBlob\r\n  Stack trace:    at System.Security.Cryptography.RSACryptoServiceProvider.IsPublic(Byte[] keyBlob)\r\n   at WebLink.LFDSHelper.AddLFDSSigningKeyFromLicenseFile()\r\n

One more thing to note, when i click down on public user in weblink designer and use windows auth I get error "The TLS/SSL host name does not match the host name in the X.509 certificate."
On my 2nd Weblink site that still uses Auto-login with Laserfiche credentials and i click windows auth it loads just fine.

EndpointUtility.exe in Weblink says localhost, it will not save anything I change it to.  It will save the checkbox for Use Alternative Service. 

I tried to be as though as possible and provide as much detail as possible.