SOSI release 2.2.0 dated 3. june 2014- Change: SOSIFactory#deserializeSecurityTokenResponse per default no longer checks whether the certificate that signed the IDCard contained in the STS response is trusted. The trust-check can however be re-enabled by setting SOSIFactory.PROPERTYNAME_SOSI_CHECK_TRUST_FOR_SECURITY_TOKEN_RESPONSE property to true in the Properties object passed to the SOSIFactory constructor- Added OCES2 support for LDAP based certificate retrieval- Updated failing integration test in test-tools due to other (improved) STS error response