Hi,
Any guidance on how to update an expiring SAML signing certificate? SSO works fine but we got a notice that it will expire in October.
Question
Azure SAML Signing Certificate Update
Hi Jack,
Welcome to the Box Community!
There are new settings available in the Box Admin console which allows Primary Admins to manage their Box Enterprise's SSO connection's signing certificates without assistance from Box Support.
The SSO certificate settings in the Box Admin Console allows Box Primary Admin to manage up to two signing certificates for your Box Enterprise's SSO connection. Please take a look at this article for further instructions: https://support.box.com/hc/en-us/articles/360055356533-Using-Self-Service-SSO-Certificate-Management
Thanks for your participation in the forum and let us know how how else we can help!
Best,
Thank you! Just to confirm, I could add a second certificate without disrupting SSO for our users and this second cert would cover us if the original expires? I want to make sure I do this right as it could impact over 150 user's access.
Hi Jack,
That is correct, and exactly the reason why we support up to 2 certificates.
In order to seamlessly support the transition from a soon-to-expire certificate to a new certificate, admins can add up two 2 certificate to their Box SSO connection. If the original certificate fails for whatever reason (e.g. expired cert) the SSO connection will automatically fall back to the secondary certificate.
Best,
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.