Andreas,
As long as the vendor issued certificates as well as the certificate chain are added properly to the keystore that xFlow uses + SDM web servers (IIS/Tomcat) use, xFlow should work fine.
If this is still giving you grief, may I suggest raising a support case for this and hit me up - I can work with you.
Thx
_R