Authentication
      Back to home
      1. Knowledge base
      2. Administration
      3. Authentication

      How to update the SSO Certificate

      A Step-by-Step Guide how to update the SSO certificate in your Orchidea workspace

      ⚠️ Important tip.

      Prior to updating your SSO certificate, ensure that manual login is enabled for your Orchidea account. In the event of an issue during the FederationMetadata update, manual login will serve as a backup authentication method for Orchidea access.

      You can disable Manual login after you have completed the update process.

      Steps for Certificate Update

      1. Generate a new certificate, e.g. in Azure Entra Identity Services.

      2. Download the FederationMetadata.xml file associated with the newly created certificate.
      3. Upload the new FederationMetadata.xml file to Orchidea and confirm by saving the changes.
      4. Activate the new certificate, e.g. from Azure Entra Identity Services.
      5. Perform a test to verify SSO authentication functionality. Log out and login your self using SSO.

      ⚠️ Important Note

      It is important to understand that during the transition between steps 3 and 4, any users who do not have prior authorization will be temporarily unable to log in to Orchidea using SSO. However, users who already possess valid authorization credentials will be able to continue accessing Orchidea without interruption throughout the update process.