Table of Contents

Export SAML signing certificate to a file

Overview

This document will guide you through the steps to export the SAML IdP Signing certificate to a file. This must be done if a SAML Service Provider requires you to manually save the certificate in their configuration.

Instruction

  1. Open the SAML IdP metadata by going to this url:

    https://your_pas_url/authentication/saml/your_idp_name/meta

  2. Locate the certificate used for signing ("use=signing") loading-ag-5257

  3. Copy the certificate data loading-ag-5259

  4. Copy the pem template into text editor of your choice

    template:

    -----BEGIN CERTIFICATE-----
CERTIFICATE DATA
-----END CERTIFICATE-----

  5. Replace the text “CERTIFICATE DATA” with the copied certificate data. It should look like this after the replace: loading-ag-5261

  6. Save the file as idpsign.pem

  7. Done!

X509 (Certificates) SAML 2 Federation Identity Provider