Identity Provider Certificate Renewal (SAML)

Requirement: Superuser access

The Identity Provider Certificate (IdP) authenticates your users with Borealis (service provider). If a certificate expires without a replacement, it can result in service disruption.

Replace an Existing Identity Provider Certificate (IdP)

  1. Navigate to Users > Authentication settings.
  2. In the left hand record menu, expand SAML and select Connection configuration
    connectionconfig.png
  3. Click on the Edit icon in the upper right of the information section.
  4. Click the X (Clear) icon to delete the current IdP certificate in the Identity provider (IdP) certificate field.
  5. Click the + (Create) icon in the same field to upload your new identity provider (IdP) certificate (.cer file).
  6. Click the Save button.

Upload an Additional Identity Provider Certificate (IdP)

While the current certificate is still valid, you can use the field Identity provider (IdP) additional certificate to upload an additional certificate. Once the current certificate expires, the additional certificate will automatically become active.

  1. Navigate to Users > Authentication settings.
  2. In the left hand record menu, expand SAML and select Connection configuration
  3. Click on the Edit icon in the upper right of the information section.
  4. If an active certificate is already present in the Identity provider (IdP) additional certificate:
    1. Reupload it in the Identity provider (IdP) certificate field.
    2. Click the X (Clear) icon to delete the certificate in the Identity provider (IdP) additional certificate field.
  5. Click the + (Create) icon in the same field to upload an additional identity provider certificate (.cer file).
  6. Click the Save button.

After the currently active identity provider certificate (IdP) expires and the additional certificate becomes active, it is recommended to replace the expired identity provider certificate (IdP) with the additional certificate. You will then be able to use the additional certificate field to upload an additional certificate for your next renewal.

 

 

                  

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request