DRAG DROP
You are the Office 365 administrator for your company.
You must configure a trust between the on-premises Active Directory domain and the Office 365 environment by using Active Directory Federation Services.
You need to assign the correct certificate to the description of your on-premises server environment below.
Which certificate types should you assign? To answer, drag the appropriate certificate type to the correct test description. Each certificate type may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer: 
Explanation:
Certificates are used to secure communications between federation servers, Web Application Proxies, federation server proxies, the cloud service, and web clients.
A Secure Sockets Layer (SSL) certificate is used to secure communications between federation servers, clients, Web Application Proxy, and federation server proxy computers.
A Token-signing certificate is a standard X.509 certificate that is used to securely sign all tokens that the federation server issues and that the cloud service will accept and validate.
Explanation:
https://technet.microsoft.com/en-us/library/dn151311.aspx
http://blogs.technet.com/b/adfs/archive/2007/07/23/adfs-certificates-ssl-token-signing-and-client-authentication-certs.aspx