Assigning a new X.509 SAML Certificate to an Identity Provider configuration in ScreenSteps

Updated on

Workflows are not supported in your browser.
Please use a recent version of Chrome, Edge, Firefox or Safari to display this page.

When you set up Single Sign-on using SAML in ScreenSteps you upload an X.509 Certificate in PEM format. This file is provided by your SAML provider. (If you are using Salesforce then the certificate is included in the Identify Provider Metadata file that you uploaded.) When that certificate expires you must upload a new certificate in order for your ScreenSteps SAML integration to continue to work properly.

Download the updated X.509 SAML certificate from your SAML provider

Which SAML provider is your ScreenSteps Authentication Endpoint connected to?

Download Metadata file from Salesforce

Download Metadata file

Download the certificate from Apps > SAML Apps > Settings for ScreenSteps

From this screen, click on the Manage certificates link.

In the dialog that appears, click on the Download Certificate button.

Download the certificate from ADFS Management > Service > Certificates

  1. Open ADFS Management
  2. Open Service > Certificates
  3. View Certificate on token-signing primary
  4. Click the Details tab
  5. Click Copy to File...
  6. Select Base-64 encoded X.509 (.CER)
  7. Save to file (.CER)

Locate and download the x.509 certificate in PEM format

Unfortunately we don't have specific instructions on where to locate the certificate for your provider. You will most likely find the certificate in area of the SAML provider application where you configured the ScreenSteps integration.

Upload the certificate or metadata file to ScreenSteps

Refer to the article Configuring Identity Providers for your Account or Sites if you are familiar with where to find these settings.

Which SAML provider did you download the file from?

Upload metadata file

Click on the Upload metadata file button on the Configuration URLs tab and select your file. This will update the X.509 SAML Certificate on the Certificate tab.

Upload metadata file

Upload PEM file

Click on Replace certificate file from the Certificate tab and select the file you downloaded from your Identity Provider.

Congratulations, you are done!


Add your comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Previous Article How do I change the subdomain of a site that uses Single Sign-on?
Next Article "Current time is earlier than NotBefore condition" error
Still Need Help? Contact Us