less than a minute
Organization Administrator
.If you have already set up federation with an Identity Provider, generating new certificates will disable the current connection.
This will cause users who use your Identity Provider to no longer be able to authenticate, until the federation is reconfigured with the new certificates!
Each organization is provided a set of SAML certificates, enabling you to use an identity provider of your choice for SSO. Typically these remain valid for an entire year.
In case you are recieving e-mail about expired SAML certificates, it only takes a few steps to generate a new set.
To create a fresh set:
Administration
-> Identity Provider
-> SAML
REGENERATE CERTIFICATE
For the sake of completeness, it is advisable to remove the expired certificates:
Administration
-> Certificate Management
-> Certificates Library
DELETE