Overview
You may need to update the X.509 public key certificate for communication with a single-sign on (SSO) Authentication Provider for security reasons. This certificate is contained within CrashPlan's metadata XML file. This article explains how to update the XML file so that the single sign-on certificate is also updated.
For more information on single sign-on and Crashplan, see our article introduction to CrashPlan single sign-on.
Before you begin
Update the certificate on your authentication provider before updating the CrashPlan XML file. Consult your specific authentication provider's documentation for more information.
Update CrashPlan's certificate
You can update the single sign-on certificate either by allowing the CrashPlan console to update automatically on its regular interval or by removing your authentication provider and re-adding it to the CrashPlan console. The option you choose depends on how quickly you need to update the certificate.
Option A: Wait for the CrashPlan console to update the XML metadata file automatically
We recommend waiting for the CrashPlan console to update the metadata file automatically. CrashPlan checks the Identity Provider metadata URL every 6 hours. If you updated the certificate on the authentication provider, CrashPlan will update the XML file and certificate automatically the next time it checks the metadata URL.
Option B: Re-add your Identity Provider
If you need to immediately update your certificate, delete and re-add your authentication provider in the CrashPlan console.
- Sign in to the CrashPlan console.
- Navigate to Administration > Integrations > Identity Management.
- Select the authentication provider, and make note of the current configuration (for example, attribute mappings and display name if you have custom configurations).
- Click Actions, and select Delete this authentication provider.
- Click Add authentication provider. Enter a name for the provider.
- In Provider's metadata, enter the URL for the authentication provider metadata XML file.
- Click Create Provider.
Authentication provider settings appear.
- Set up the authentication provider to match the previous configuration you noted in step 3.
For more details on setting up an authentication provider, see How to configure SSO in your CrashPlan environment.