How to renew your SAML certificate in Azure AD and upload to Risk Cloud
Note: You must already have SSO set up and be a Risk Cloud Admin to upload new federation metadata to your Risk Cloud environment.
Renewing SAML Certificate in Azure AD
In order to renew your SAML certificate in Azure AD, you will first need to navigate to your LogicGate application in Azure.
Once in Single sign-on, scroll down to step 3, SAML Certificates and click Edit:
After clicking Edit, click on New Certificate:
Then, mark the new certificate as Active by clicking the three dots on the right-hand side of the new certificate. Once the new Certificate is marked Active, click Save on the top left:
Your new SAML certificate is now active!
Downloading new Federation Metadata
We will now need your new Federation Metadata. To download new metadata, scroll back down to Step 3, SAML Certificates, and click Download Federation Metadata.
Uploading new Federation Metadata into Risk Cloud
All that is left is to upload this new XML file into your Risk Cloud Environment. Please note that a Risk Cloud Admin is needed to upload metadata into your environment. If you are unsure who your Risk Cloud admin is, please reach out to your Customer Success Manager for assistance.
As a Risk Cloud admin, log into your environment and navigate to Admin > Integrations from your navigation bar:
Once on the Integrations page, click the gear icon on the Single Sign On tile, then Configure:
The last step will be uploading your new federation metadata file that you downloaded previously into the new SSO configuration popup:
Note: there will be no 'official' confirmation that your new metadata has been uploaded, but an error message will appear if anything goes wrong. If no error message appears, your new metadata has been uploaded successfully.
Once the file is uploaded, your SAML certificate has been renewed and uploaded to Risk Cloud!