I know you can turn EncryptClaims to false by issuing the powershell command below:
set-ADFSRelyingPartyTrust –TargetName “target” –EncryptClaims $False
My questions is: what is the danger of doing this? Does it expose anything (ie: credentials) to the internet in some way I'm not familiar with. I would think that the https should offer sufficient protection. Any info would be appreciated.
I'm an ADFS neophyte, so I apologize for any ignorance on my part.