When importing an entrust certificate, the certificate is stored incorrectly.
In particular, comparing the CA.CDS::Certificate and the CA.FED::Certificate, the IssuerDN is different.
IssuerDN = "C=US,O=Entrust\, Inc.,OU=See www.entrust.net/legal-terms,OU=(c) 2012 Entrust\, Inc. - for authorized use only,CN=Entrust Certification Authority - L1K"
*IssuerDN = "CN=Entrust Certification Authority - L1K, OU="(c) 2012 Entrust, Inc. - for authorized use only", OU=See www.entrust.net/legal-terms, O="Entrust, Inc.", C=US"
This causes transaction that leverage certificates to fail during signature validation so that the federation transaction is failing.