adfs certificate expired.

  • 5 March 2024
  • 1 reply
  • 14 views
darshana
Rank
Userlevel 2
Badge +6

Hi All,

Please confirm the steps required once we applied new certification ADFS server?

Specifically, what activities will be needed to apply to the IFSCloud application? (Remote customer)

Do we need to create a new identity provider following the instructions outlined in the provided document? Your clarification on this matter would be greatly appreciated.

https://docs.ifs.com/techdocs/23r1/030_administration/010_security/040_iam_settings/041_external_identity_providers/#add_external_identity_provider_in_ifs_iam

 

Thank,

Darshana Pathum

1 reply

S
Rank
Userlevel 7
Badge +21

Hi @darshana ,

You wouldn’t need to do anything in the IAM setup as far as i’m aware if the ADFS URL’s that is used doesn’t change. If this is a simple update of the certificate and not a name change in the ADFS side, this would not be the same.

Where you would need to a change would be if the certificate used in ADFS is an internal domain certificate rather than a Enterprise Root CA certificate. In this case, IAM container will not trust the certificate natively so you would need to import to certificate to the java key store in IAM.

you can do this by including the certificate and the container detail in the ifscloud-values file and re deploying the MT. Not sure whether there is a easier/better way to do this now in the newer releases. 

Cheers,

Reply


Terms & ConditionsCookie settings