Forum Discussion

Manuel_Cristob2

Icon for Nimbostratus rank

Nimbostratus

Jul 23, 2020

Is there a way to configure SAML assertion where the certificate gets updated automatically between the IDP and SP?

any one has done this?

application delivery

BIG-IP Access Policy Manager (APM)

Sajid
Cirrostratus
Feb 18, 2021
You got any solution?
boneyard
MVP
Feb 27, 2021
i dont believe there is. even on other products you don't see standard solutions. if the IdP metadata is online available you could script something together, but there is no regular solution.

there is something to say for that, automatically trust a new certificate can have implications if the chain is broken somewhere in between.
Sajid
Cirrostratus
Feb 27, 2021
Thanks for your response.

Can we use the self-sign certificate with a long expiry date?
- boneyard
  MVP
  Feb 28, 2021
  if you control the IdP or are allowed to upload the certificate/key that is an option indeed.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming