Skip to content
English
Contact Support
  • There are no suggestions because the search field is empty.

Changing an Identity Provider Certificate

Learn how to change an Identity Provider Certificate in Foundry. 

If your identity provider’s signing certificate needs to change, for example if you are rotating to a newer certificate, then follow these steps to rotate the certificate.

Option 1: Update the Certificate Manually

  1. Log in to Foundry as an administrator and navigate to Settings > Single Sign-On.
  2. Edit your identity provider configuration by clicking on the pencil icon to the far left. 
  3. Outside Foundry, open your new certificate and copy the certificate public key or fingerprint to your clipboard.
  4. Paste the certificate text or fingerprint and algorithm into the identity provider certificate field in Foundry.
  5. Save the IDP configuration.
  6. Make any necessary updates to the Foundry service provider entry in your identity provider at the same time so that the certificates are in sync in both systems.
Option B: Update via Metadata URL of File
  1. As described above in the section on adding a new identity provider configuration in Foundry, enter in your metadata URL or upload a metadata file that has the new certificate, then save the identity provider configuration.