Disable certificate revocation checking

ADFS can't look up the certificate revocation status because certificates from PE don't include CRL information. Use PowerShell to disable certificate revocation checking so ADFS doesn't perform certificate revocation checks on the relying party trust, resulting in trust failures.

In PowerShell, display the names for all relying party trusts:
```
Get-AdfsRelyingPartyTrust | ft Name
```
Find the trust with the display name you selected for your PE server.

Determine the status of the revocation check for the PE trust:

Get-AdfsRelyingPartyTrust -Name <DISPLAY NAME> | ft EncryptionCertificateRevocationCheck, SigningCertificateRevocationCheck

If the encryption and signing certificate revocation checks show anything other than None, disable checking:

Get-AdfsRelyingPartyTrust -Name <DISPLAY NAME> | Set-AdfsRelyingPartyTrust -SigningCertificateRevocationCheck None -EncryptionCertificateRevocationCheck None