How can we renew our SP certificate that is about to expire on IDP Federation Partnership?

book

Article ID: 102461

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction



Our SP certificate that has been configured for verification on the IDP Partnership is about to expire.

Do you have any recommendations on how we can renew the certificate on the IDP?

Environment

Release:
Component: SMPLC

Resolution

1. Import the renewed cert using Adminui with some dummy name - currentcertrenewed 

2. Rename the current cert which is going to expire to some new name

./smkeytool.sh -renameAlias -alias currentcert -newalias currentcertexpired


3. Rename the renewed cert (currentcertrenewed) to current cert name

./smkeytool.sh -renameAlias -alias currentcertrenewed -newalias currentcert

4. Flush SM Cache