We are testing a new build of an IPA server. Prior to ISS Federation with LSF, we were able to log in to Inbasket and other IPA-related URLs as well as Rich Client and Designer. Both LSF and LM have been bound to the client's corporate LDAP for sign on authentication.
After Federating the two servers, Inbasket has worked as expected - you can navigate from Portal to Inbasket without being prompted for credentials by LM. However, any attempt to log in to Rich Client or IP Designer results in "Invalid user / password". I've checked the lsservice.properties files against those of working installations and I don't see any difference. I've had a case open with Infor Support for over a week, and I've checked with an experienced installer - neither has run into this situation before.
Any ideas?