How to I renew a new domain certificate and prevent down time when the old cert. expired?

winnie_leung · ‎06-19-2014

Dear Gurus,

We are doing implementation on ServiceNow and using the SAML 2.0 external authentication from Windows AD. Currently, the certificate is uploaded in the Certificate session and the system is up and running. However, as the certificate will expire one year later and no one will be able to logon after the certificate expired. Is there any way I can upload the new certificate before the old one expired? Looks like there can only be one certificate entry? And if the old certificate expired, users can no longer login to the system, how do we renew the certificate in ServiceNow? Thanks!

Best Regards,

Winnie

harikrish_v · ‎06-19-2014

I think this link will be helpful to you:- http://wiki.servicenow.com/index.php?title=Configuring_ADFS_2.0_to_Communicate_with_SAML_2.0

Thanks & Regards,

Hari

Kumar Tella · ‎06-19-2014

If the certificate is expired, you may login using side_door.do option to login to your instance that will bypass the SSO and then upload new certificate.

winnie_leung · ‎06-19-2014

Thanks for the hints. I wish I know who to use the side_door earlier .

I am just wondering if it is possible to upload the another "future" certificate so that the admin does not have to rush to replace the certificate when the old one really expired for better certificate. Thanks.

winnie_leung · ‎06-19-2014

Thanks Harikrishnan. I have read the page as it contains the essential steps for setting up SAML. But looks like it does not contains the procedure so that I can prevent download when the old certificate expired and the new certificate is not yet installed. Thanks anyway for pointing out the link