SAML Response certificates

Owned by Elias Brattli Sørensen
Last updated: Jan 18, 2024
1 min read

See also: https://kantega-sso.atlassian.net/wiki/spaces/KSE/pages/859406364

Occasionally when the SAML response certificate expires, you will have to update this on the IdP end. This process will vary from identity provider to identity provider. After a new key for SAML response signing is created in your IdP, you will have to install the certificate in Kantega SSO either by refreshing metadata (on the page Identity Providers > Your SAML IdP > Metadata), or installing the new certificate (on the page Identity Providers > Your SAML IdP > Idp trust certificate).

This guide explains how to update SAML Response certificates in AD FS.