EDR: How to Update SSO ADFS Certificate
search cancel

EDR: How to Update SSO ADFS Certificate

book

Article ID: 284748

calendar_today

Updated On:

Products

Carbon Black EDR (formerly Cb Response)

Issue/Introduction

How to update existing SSO integration ADFS certificate?

Environment

  • EDR Server: All Supported Versions
  • ADFS IdP: 2.0+

Resolution

1. Acquire a new metadata XML from the ADFS IdP and place it in the /etc/cb/sso directory on server or primary server if running on a cluster. 
2. Generate EDR server’s SSO service provider metadata XML file by issuing this command: 
/usr/share/cb/cbssl sso --make-metadata > /<your file path>
3.Once this file is created, please give it to the identity provider to complete the trust. 
4.Restart the server/cluster. 
EDR: How to Restart Server Services

Additional Information

For more details on ADFS integration, please refer to Integrate ADFS IdP