What to do if your IdP certificate has been updated?

In the event that your IdP's (Identity Provider) certificate has been updated, it is important to update the certificate in your Employee Referrals company account as well. Failure to do so will result in your users being unable to log in via SSO. As a precautionary measure, we recommend creating a backup admin user with an email address that is not associated with SSO, such as application@domain.com.

If your IdP certificate has changed, follow these steps to update it in your Employee Referrals company account:

  1. Login using the backup administrator login mentioned earlier.
  2. Navigate to "Account Preferences" and locate the "Single Sign-On" section.
  3. Click the "Expand" button to reveal the "Single Sign-On Configuration" options.
  4. Depending on your current settings, you can either:
    • Upload a new "Metadata file"
    • Add a new "Metadata URL"
    • Simply update the "Signing certificate" to "Manual settings".
  5. Click on the button "Save configuration" to save your changes.

By completing these steps, you will ensure that the IdP certificate is up to date, allowing users to continue logging in via SSO smoothly.

 

Please note!

In case your IdP configuration provides different certificates for "signing" and "encryption", please make sure you add only the "signing" certificate under "Signing certificate".

 

screenshot-1.png

Was this article helpful?
0 out of 0 found this helpful