Updating the IdP certificate in Workforce Management

If your IdP issues a new SAML public signing certificate, the new signing certificate can be saved to the Sensitive Data Configuration form.

Note: Since the SAML signing certificate is used each time a user authenticates, the key should only be rotated when the system is not in use.
  1. Select Maintenance > System Administration > Sensitive Data Configuration.
  2. Click Create New Entry to create a new row.
  3. In the Configuration Type drop-down list, select SAMLPUBLICCERT.
  4. Leave the Public Data field blank.
  5. In the Expiration Date field, select the expiry date of the new SAML public signing certificate.
  6. In the Protected Data field, enter the value of the new SAML public signing certificate.
  7. Restart the application server for the changes to take effect.