SAML metadata does not update when regenerating an expired SAML certificate for an Organization in Cloud Director 10.3
search cancel

SAML metadata does not update when regenerating an expired SAML certificate for an Organization in Cloud Director 10.3

book

Article ID: 325494

calendar_today

Updated On:

Products

VMware Cloud Director

Issue/Introduction

Symptoms:
  • SAML metadata does not regenerate when updating the SAML certificate for an Organization in Cloud Director 10.3.
  • When regenerating an expired SAML certificate, it appears to update but then reverts back to the original date when clicking Save.
  • If a user edits the SAML configuration for an Organization and regenerates the SAML Service Provider certificate, when updating the changes the certificate date does not get updated. 


Environment

VMware Cloud Director 10.x

Cause

This defect is caused by the Save button reverting the settings back to the old keys and certificates.

Resolution

This is a known issue affecting Cloud Director 10.3.
The issue is resolved in Cloud Director 10.3.3, available at Broadcom Downloads

If you cannot upgrade to Cloud Director 10.3.3 or above, please use the workaround specified in the Workaround section.

Workaround:

  1. Open the Provider portal of Cloud Director and navigate to the Resources > Cloud Resources > Organizations tab.
  2. Click on the name of the Organization to be updated.
  3. Click on Identity Providers > SAML.
  4. Note the Service Provider > Certificate Expiration date shown.
  5. Click Edit.
  6. Click Regenerate.
  7. Click OK, but do not click Save.
  8. The Certificate Expiration date in the UI will have changed.
  9. Click Discard.
  10. The Service Provider > Certificate Expiration date gets updated to the required new date.



Additional Information

Impact/Risks:
The expired SAML certificate does not regenerate and update with a new expiry date in the UI

Powered by Wolken Software