Hallo,
no need to get them signed by a CA.
You can add your own CA via STRUSTSSO2, select “Database” under menu “Certificate”.
Where did you import the root and intermediate certificates of the ADFS signing certificate in STRUSTSSO2? This should be under SSL Client standard.
Regards
Thomas.