Web Application and WCF hosted together and enabling AD FS 2.0 claim based signon

while trying to enable ADFS based single sign-on for both the web application and wcf, I got the wcf service working however when trying to access web app, I got the following error message: ID4036: The key needed to decrypt the encrypted security token could not be resolved from the following security key identifier Apparently we need to add the certificate for encryption of wcf sign-on, however this causes issue for the web application, tried various suggestion and no luck. At the end, I created another RP policy and separate the two and all work fine!

How to run Epicor E4SE ICE 1.4 and ICE1.5 side by side

Recently I upgraded our E4SE V8.11 from ICE 1.4 to ICE1.5, after upgrade, I noticed that another sites which hasn't been rebuilt stopped working. Since we don't want to upgrade the other site, I need to figure out a way to make ICE1.4 and 1.4 run side by side. At the end, the solution is actually surprisingly simple, use the bindingRedirect settings in web.config, we only need to either install ICE 1.4 assemblies in GAC or simply copy to the 'bin' folder. ....................