Configuring WS-Trust behind SSL ovloading load balancer

[MJurmo]

Hi all,
I have not been able to configure a system which will allow me to actively request a security token from thinktecture IdentityServer STS v2 to a MVC RP.
Everything was hunky doory in DEV and INT environments where our STS was behind an HTTP only load balancer and our clients were getting the tokens using WS-Trust username message level security.

When we moved to QA we wanted to be able to leverage Facebook, Google for Identity providers so we made the load balancer secure with a SSL and HTTPS traffic. The STS webserver remains HTTP (SSL Offloaded). We can no longer retrieve the token using WS-Trust/username/message level security. I am pretty sure the problem is with the WCF configuration between the client and server, but simply do not have the background to overcome as quickly as I would like.

I could provide a novel length memo of what we have tried, but before I bleed my fingers I will simply ask if anyone has had this problem and how they were able to overcome it.

Thanks so much for any help, I will be happy to provide any config information or files that may help you help me:)