Change SSO metadata certificate for SSO 8.9.x onwards

Owned by Former user (Deleted)
Last updated: 2022-04-22
1 min read

How to change the Ubisecure SSO metadata certificate for SSO 8.9.x onwards?

Requirement

  • If you want to change the self-signed certificate in SSO to CA signed certificate

  • If old SSO metadata certificate is about to expire.

Starting SSO 8.9.x

  • You generate a private key and sign a CSR with it and send the CSR to the CA. You will get a certificate from the CA and install it.

Details related to creation of keys, associating them, creating CSR and Adding certificate can be found in below documents:

https://ubisecuredev.atlassian.net/wiki/spaces/IDS20213/pages/4452582455#Keyrotation-SSO-Introduction

https://ubisecuredev.atlassian.net/wiki/spaces/IDS20213/pages/4452582088#ManagementAPI-SSO-UsingManagementAPItomanagekeysUsingManagementAPItomanagekeys

 

For SSO 8.8.x and older

Please use the following documentation to update the SSO metadata certificate instead of above mentioned steps: https://ubisecuredev.atlassian.net/wiki/spaces/KNB/pages/5576064997

 

Ubisecure Privacy Policy & Cookie Statement