For ADFS 2.0 to work with Access Manger SAML 2.0, you must disable the Certificate Revocation List (CRL) checking.
To disable the CRL checking:
Modify the tomcat.conf file of Identity Server located at /opt/novell/nam/idp/conf/tomcat.conf.
Add this parameterJAVA_OPTS="${JAVA_OPTS} -Dcom.novell.nidp.serverOCSPCRL=false".
Restart Identity Server by using this command: /etc/init.d/novell-idp restart.