Install a service provider keystore for signing SAML requests

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Use the following steps to remove the existing example key store and install your own Service Provider key store containing your public and private key pair.

    Before you begin

    Role required: sso_config_admin, business_rule_admin, script_include_admin

    Procedure

    1. Create a Service Provider key store.
    2. Navigate to SAML 2 Single Sign-on > Certificate or Multi-provider > Administrator > x509 Certificate.
    3. Click SAML 2.0 Keystore_Key2048_SHA256.
    4. Click the Manage Attachments link.
    5. Select the Delete checkbox next to saml2sp_key2048withsha256.jks.
    6. Click Remove.
    7. Click Choose Files and select the Keystore containing your signed certificates.
    8. Click Attach.
    9. Close the Attachments popup.
      Note:
      It is recommended to provide different name for the certificate that is attached newly.
    10. In Key store password, enter the password to access the SAML 2 alias.
    11. Click Update.