I have some questions regarding your documentation here.

1. Your documentation does not have a clear pre-requisite area, which outlines the need for IIS, in fact, as a new user reading the documentation, it is not even mentioned until you look into the PDF for installing AD FS 2.0. You also do not discuss the possible need for a certificate from a central authority, which brings me to my next question.

2. Do you need a certificate from a centrally assigned authority? Or can it be self signed, the reason I am asking is that your documentation depending on interpretation suggests either. 

A. In the diagram it says "Service Redirects Browser to SSO URL" This technically means that the users browser directly connects to the SSO URL, which would require a certificate from a central authority, so that the user does not see an SSL cert error in their browser.  

B. In the text below the diagram it says "All authentication requests will be forwarded to this Identity Provider." This indicates that you are forwarding the requests on behalf of the user, and thus, a self assigned certificate would be sufficient. 

Which one is it?

Thank You