Is there a way to configure SAML assertion where the certificate gets updated automatically between the IDP and SP?

Question

any one has done this?

sajid · Answer

You got any solution?

boneyard · Answer

i dont believe there is. even on other products you don't see standard solutions. if the IdP metadata is online available you could script something together, but there is no regular solution.

there is something to say for that, automatically trust a new certificate can have implications if the chain is broken somewhere in between.

sajid · Answer

Thanks for your response.&nbsp;Can we use the self-sign certificate with a long expiry date?&nbsp;&nbsp;

boneyard · Answer

if you control the IdP or are allowed to upload the certificate/key that is an option indeed.

Forum Discussion

Is there a way to configure SAML assertion where the certificate gets updated automatically between the IDP and SP?

4 Replies

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

Port Group on F5OS network setting

Advise on setting up IRULE

F5 iRule to replace host to path

google-visualization-issues

Related Content

Certificate Expiry Email alert configuration

F5 Automatic ISP failover Configuration

Re: Management Certificate

Configure NGINX microgateway for MTLS termination and client certificate hash verification

My Security+ Certification Journey