Home Forums CA Single Sign-On What is the best procedure for renewal of certificate? Reply To: What is the best procedure for renewal of certificate?

#652

Dhilip
Participant

Hi Ujwol,

Thanks for your thoughts.

Certificate which I am trying to renew is our IDP signing certificate. I could see that in the thread (which I referred earlier), you have mentioned the below lines.
“I guess your procedure will work only if the cert is being used for Signing”

1) In the future, in case, if we have a requirement to use the same certificate for encryption as well, will we face an issue? Could you please provide your opinion?

2) CA’s recommended approach(for our case) is to import new certificate with different alias and change the Alias (to new alias instead of empty/defaultenterpriseprivatekey) in all the SAML service providers. Could you please confirm if my understanding is correct?