Renewing the SAP Analytics Cloud SAML Signing Certificate
To continue using SAML SSO, an administrator must renew the certificate before it is expired.
Context
An email with details on how to renew the SAML X509 certificate will be sent to administrators
before the certificate expiry date. If the certificate expiry is less than 30 days
away, a warning message will also appear when you log on to SAP Analytics Cloud.
Note
If you
click the Renew link on the warning message, you will be
taken to the Security tab on the
Administration page.Procedure
Results
If you are able to log on, the certificate renewal was successful. If you cannot logon, try one of the following troubleshooting tips.
If you use SAP Cloud ID for authentication:
- Clear the browser cache.
- Allow up to five minutes for the SAP Cloud ID service to switch to the new certificate.
If you use a custom identity provider for authentication:
- Ensure the new metadata file has been uploaded to your IdP. For more information, see Enabling a Custom SAML Identity Provider.
- Clear the browser cache.
- Allows up to five minutes for your IdP to switch to the new certificate with the newly uploaded metadata.