I just got mine to work too. I also had to reimport my metadata.xml a second time.
Curious .... when you go to SICF to enable a Service (ie NWBC), you select the [Alternate Logon Procedure] and then you have to move SAML Logon up in the order. One of the docs says that Logon Through HTTP Fields should always be #1. Did you do that? Or did you move SAML Logon up to be first?
