{"id":92298,"date":"2023-06-27T17:55:15","date_gmt":"2023-06-27T21:55:15","guid":{"rendered":"https:\/\/jumpcloud.com\/?post_type=support&p=92298"},"modified":"2024-03-01T15:58:39","modified_gmt":"2024-03-01T20:58:39","slug":"manage-application-idp-certificate-and-key-pairs","status":"publish","type":"support","link":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","title":{"rendered":"Manage Public Certificate and Private Key Pairs"},"content":{"rendered":"\n

A public certificate and private key pair are required to successfully connect applications with 探花大神. This certificate and key pair are used during SAML handshakes to successfully authenticate users during an SSO login.\u00a0After you activate an application, 探花大神 automatically generates a public certificate and private key pair for you. You can use this pair or upload your own from the Application Details panel.\u00a0Learn how to generate a custom certificate and private key pair<\/a>.<\/p>\n\n\n\n

You can upload, download, and regenerate certificates from the Application Details<\/strong> panel. Additionally, you can view the status for both the certificate and public key on the Application Details<\/strong> panel, including the certificate\u2019s expiration date. Certificate and key status is indicated as grey if there isn\u2019t a certificate or key detected for the application. Status is indicated as green if a certificate and key are detected. <\/p>\n\n\n\n

<\/p><\/div>

Warning:<\/strong> \n

Your private key should be closely guarded. If this key has been lost or compromised, it should be regenerated immediately. An easy way to do this is to regenerate your certificate<\/a>. <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

When it gets close to the time when the certificate will expire, emails will be sent out to notify admins. These emails will be sent out with 60 days, 30 days, 7 days, and 24 hours before expiration. The emails contain a link labeled Regenerate Certificate <\/strong>that can be used to renew the public certificate. <\/p>\n\n\n\n

Uploading a public certificate<\/strong><\/h2>\n\n\n\n
    \n
  1. Go to USER AUTHENTICATION<\/strong> > SSO<\/strong> Applications<\/strong>.<\/li>\n\n\n\n
  2. Select an application from the list.<\/li>\n\n\n\n
  3. Expand the IDP Certificate status by clicking the triangle and then select Upload new certificate<\/strong>.<\/li>\n\n\n\n
  4. Browse to the certificate file and then click Open<\/strong>.<\/li>\n<\/ol>\n\n\n\n

    Uploading a private key<\/strong><\/h2>\n\n\n\n
      \n
    1. Go to USER AUTHENTICATION<\/strong> > SSO<\/strong> Applications<\/strong><\/strong>.<\/li>\n\n\n\n
    2. Select an application from the list.<\/li>\n\n\n\n
    3. Expand the IDP Private Key status by clicking the triangle and then select Upload IDP Private Key<\/strong>.<\/li>\n\n\n\n
    4. Browse to the private key file and then click Open<\/strong>.<\/li>\n<\/ol>\n\n\n\n

      <\/p><\/div>

      Warning:<\/strong> \n

      These must be uploaded in pairs, i.e., if you upload a new certificate, you must upload a new private key and vice versa.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

      Downloading a certificate<\/strong><\/h2>\n\n\n\n
        \n
      1. Go to USER AUTHENTICATION<\/strong> > SSO<\/strong> Applications<\/strong><\/strong>.<\/li>\n\n\n\n
      2. Select an application from the list.<\/li>\n\n\n\n
      3. Expand the IDP Certificate status by clicking the triangle and then select Download certificate<\/strong>.<\/li>\n\n\n\n
      4. The certificate will download to your local Downloads folder with the name certificate.pem.<\/li>\n<\/ol>\n\n\n\n

        <\/p><\/div>

        Tip:<\/strong> \n

        After the application is saved, you can also download the certificate by clicking Download Certificate <\/strong>in the notification in the upper-right corner of the screen.  <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

        Regenerating a certificate<\/strong><\/h2>\n\n\n\n

        <\/p><\/div>

        Note:<\/strong> \n

        You can’t regenerate a certificate until you activate an application connector.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

          \n
        1. Go to USER AUTHENTICATION<\/strong> > SSO<\/strong> Applications<\/strong><\/strong>.<\/li>\n\n\n\n
        2. Select an application from the list.<\/li>\n\n\n\n
        3. Expand the IDP Certificate status by clicking the triangle and then select Regenerate certificate<\/strong>.<\/li>\n\n\n\n
        4. Click continue<\/strong>.<\/li>\n\n\n\n
        5. After you regenerate the certificate, the private key is also regenerated.<\/li>\n<\/ol>\n\n\n\n

          <\/p><\/div>

          Warning:<\/strong> \n

          If your SSO Service Provider uses 探花大神 metadata and you regenerate the certificate, you must export new metadata and upload it to the Service Provider.<\/p>\n <\/div><\/div><\/div><\/div>\n","protected":false},"excerpt":{"rendered":"

          A public certificate and private key pair are required to successfully connect applications with 探花大神. This certificate and key pair […]<\/p>\n","protected":false},"author":205,"featured_media":0,"template":"","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"support_category":[2855,2902,2994],"support_tag":[],"coauthors":[2839],"acf":[],"yoast_head":"\nManage Public Certificate and Private Key Pairs - 探花大神<\/title>\n<meta name=\"description\" content=\"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Manage Public Certificate and Private Key Pairs\" \/>\n<meta property=\"og:description\" content=\"Browse the 探花大神 Help Center by category, search for a specific topic, or check out our featured articles.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\" \/>\n<meta property=\"og:site_name\" content=\"探花大神\" \/>\n<meta property=\"article:modified_time\" content=\"2024-03-01T20:58:39+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/07\/202405-MISC-探花大神HelpCenter-SiteDisplay-min-2.png\" \/>\n\t<meta property=\"og:image:width\" content=\"890\" \/>\n\t<meta property=\"og:image:height\" content=\"525\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minutes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"joyjaswinski\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\",\"url\":\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\",\"name\":\"Manage Public Certificate and Private Key Pairs - 探花大神\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"datePublished\":\"2023-06-27T21:55:15+00:00\",\"dateModified\":\"2024-03-01T20:58:39+00:00\",\"description\":\"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Support\",\"item\":\"https:\/\/jumpcloud.com\/support\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Manage Public Certificate and Private Key Pairs\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"探花大神\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"探花大神\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"探花大神\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Manage Public Certificate and Private Key Pairs - 探花大神","description":"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","og_locale":"en_US","og_type":"article","og_title":"Manage Public Certificate and Private Key Pairs","og_description":"Browse the 探花大神 Help Center by category, search for a specific topic, or check out our featured articles.","og_url":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","og_site_name":"探花大神","article_modified_time":"2024-03-01T20:58:39+00:00","og_image":[{"width":890,"height":525,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/07\/202405-MISC-探花大神HelpCenter-SiteDisplay-min-2.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"2 minutes","Written by":"joyjaswinski"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","url":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","name":"Manage Public Certificate and Private Key Pairs - 探花大神","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"datePublished":"2023-06-27T21:55:15+00:00","dateModified":"2024-03-01T20:58:39+00:00","description":"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Support","item":"https:\/\/jumpcloud.com\/support"},{"@type":"ListItem","position":3,"name":"Manage Public Certificate and Private Key Pairs"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"探花大神","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"探花大神","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"探花大神"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/92298"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/support"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/205"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/92298\/revisions"}],"predecessor-version":[{"id":106795,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/92298\/revisions\/106795"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=92298"}],"wp:term":[{"taxonomy":"support_category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_category?post=92298"},{"taxonomy":"support_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_tag?post=92298"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=92298"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}