Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit ffbb296

Browse files
stacyspivastacyspiva
authored
Merge pull request Hacker0x01#226 from Hacker0x01/alt-certificate
added configure alternative certificate section
2 parents 2e9c740 + 61140a0 commit ffbb296

File tree

1 file changed

+25
-1
lines changed

1 file changed

+25
-1
lines changed

docs/programs/single-sign-on-sso-via-saml.md

Lines changed: 25 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,7 @@ HackerOne supports Single Sign-On (SSO) through Security Assertion Markup Langua
2222
2323
### Set Up
2424
To configure Single Sign-On via SAML:
25-
1. Go to: **Program Settings > General > Authentication**.
25+
1. Go to **Program Settings > General > Authentication**.
2626
2. Click **Setup SAML** in the *Single Sign-on with SAML* section.
2727

2828
![saml setup](./images/saml-daisy-1.png)
@@ -69,3 +69,27 @@ Here are some screenshots that provide additional details on Service Provider an
6969
![saml1](./images/saml-1.png)
7070

7171
![saml_2](./images/saml-2.png)
72+
73+
### Configure an Alternative Certificate
74+
If you need to switch your identity provider or if your current SAML certificate is expiring, you can configure an alternative SAML certificate to avoid having to disable your SSO integration during the update.
75+
76+
> **Note:** Only the admin of the program has the ability to configure the alternative certificate.
77+
78+
To configure an alternative certificate:
79+
80+
1. Go to **Program Settings > General > Authentication**.
81+
2. Click **configure** next to **X509 alternative certificate**.
82+
83+
![Authentication settings page with SAML configured](./images/alt-certificate-1.png)
84+
85+
3. Enter the alternative certificate in the **Configure alternative certificate** window.
86+
87+
![configure alternative certificate modal ](./images/alt-certificate-2.png)
88+
89+
4. Click **Save**.
90+
91+
After the alternative certificate has been configured, users will be able to authenticate through the new SAML certificate.
92+
93+
When the primary certificate isn't used anymore, you can promote the alternative certificate to the primary by clicking **Promote alternative certificate to primary certificate**. This will enable your primary certificate to be replaced with the alternative.
94+
95+
![authentication settings page with alt certificate configured](./images/alt-certificate-3.png)

0 commit comments

Comments
 (0)