Difference between revisions of "Single Sign On Service Certificate Renewal"

From Studentnet Wiki
Jump to navigation Jump to search
(Created page with "==Single Sign On Service Certificate Renewal== #Login to Cloudwork Dashboard #Navigate to Single Sign On #On the service list, click on the SSO Service which requires the ce...")
 
Line 19: Line 19:
 
#Take note which certificates are the new certificate, when the expiry date of the old certificate occurs, the old certificates will need to be removed(older certificates are at the top of Certificates Table)
 
#Take note which certificates are the new certificate, when the expiry date of the old certificate occurs, the old certificates will need to be removed(older certificates are at the top of Certificates Table)
 
#Click Submit
 
#Click Submit
 +
 +
===Notes===
 +
*The same certificate can be used for signing and encryption
 +
*Some Service only have 1 certificate
  
 
==Removing Certificate==
 
==Removing Certificate==
Line 29: Line 33:
 
<br>[[File:Cloudwork_SSO_Cert.PNG]]
 
<br>[[File:Cloudwork_SSO_Cert.PNG]]
 
#Click submit
 
#Click submit
 
==Notes==
 
*The same certificate can be used for signing and encryption
 
*Some Service only have 1 certificate
 

Revision as of 05:43, 4 August 2021

Single Sign On Service Certificate Renewal

  1. Login to Cloudwork Dashboard
  2. Navigate to Single Sign On
  3. On the service list, click on the SSO Service which requires the certificate renewal
  4. Scroll down to SAML Config and Click Edit
  5. Scroll down to Certificates and Click Add Row
  6. Open up the XML file received from the SSO Service which require the certificate renewal
    Example XML File
  7. In the XML file, check the Certificate 1 Usage
  8. In the Cloudwork Dashboard in the new row select with the checkbox whether Certificate 1 will be used for Signing or Encryption
  9. In XML file, Copy the Certificate 1 Content that is located in between the X509Certificate Tags(The beginning of the certificate is MIIDSTCCA and the end of the certificate is mAKo=)
  10. In the Cloudwork Dashboard in the row which has the checkbox selected, under Content paste the Certificate 1 Content
  11. In the Cloudwork Dashboard Click Add Row
  12. In the XML file, check the Certificate 2 Usage
  13. In the Cloudwork Dashboard in the new row select with the checkbox whether Certificate 2 will be used for Signing or Encryption
  14. In XML file, Copy the Certificate 2 Content that is located in between the X509Certificate Tags(The beginning of the certificate is MIIDSTCCA and the end of the certificate is 3wyacFw==)
  15. In the Cloudwork Dashboard in the row which has the checkbox selected, under Content paste the Certificate 2 Content
  16. Take note which certificates are the new certificate, when the expiry date of the old certificate occurs, the old certificates will need to be removed(older certificates are at the top of Certificates Table)
  17. Click Submit

Notes

  • The same certificate can be used for signing and encryption
  • Some Service only have 1 certificate

Removing Certificate

When the SAML SSO Certificate expiry date occurs, it will be necessary to remove the old certificate, to remove the old certificates:

  1. Login to Cloudwork Dashboard
  2. Navigate to Single Sign On
  3. On the service list, click on the SSO Service which had the certificate renewal
  4. Scroll down to SAML Config and Click Edit
  5. Remove each of the expired Certificates by pressing the red button,


Cloudwork SSO Cert.PNG

  1. Click submit