cancel
Showing results for 
Search instead for 
Did you mean: 

Is there a way to configure SAML assertion where the certificate gets updated automatically between the IDP and SP?

Manuel_Cristob2
Nimbostratus
Nimbostratus

any one has done this?

4 REPLIES 4

Sajid
Cirrostratus
Cirrostratus

You got any solution?

boneyard
MVP
MVP

i dont believe there is. even on other products you don't see standard solutions. if the IdP metadata is online available you could script something together, but there is no regular solution.

 

there is something to say for that, automatically trust a new certificate can have implications if the chain is broken somewhere in between.

Sajid
Cirrostratus
Cirrostratus

Thanks for your response.

 

Can we use the self-sign certificate with a long expiry date?

 

 

if you control the IdP or are allowed to upload the certificate/key that is an option indeed.