Maintain and Rotate SAML Certificates

Table of Contents

Before you start
Fetch updated metadata

REQUIRED USER ROLE
Administrator

SAML certificates are used to verify the authenticity and security of data shared with your Identity Provider. With certificates having a five-year lifespan, you must rotate a certificate if:

It’s about to expire.
If access has been compromised

Remember that SSO can’t be used if the certificate lapses or expires, which will prevent your users from accessing applications that use SSO until the certificate is replaced.

Before you start #

Review the following before you rotate certificates.

DO NOT rotate certificates without logging into Gladly first. Rotating certificates without being logged into Gladly will prevent you from logging into Gladly if you rotate the certificate first.

Fetch updated metadata #

Log into Gladly first before you rotate the certificate.
Rotate the certificate from your SSO provider. Below are some popular Identity Providers with information on how to rotate certificates.
- Google SSO
- Okta
- Azure
Once rotated, go back to Gladly and click on the menu icon on the top left corner of the screen.
Click Settings.
Under the Security and Compliance category, click Single Sign-On.
The Fetch metadata data from URL field should already be populated.
Click Save. This triggers Gladly to fetch updated metadata.
Without closing Gladly, open a new browser tab in incognito mode, and try to log into Gladly via SSO.
- If you can log in, that means the update is successful, and you can exit Gladly.
- If you are not able to log in, double-check that you have correctly replaced the certificate. Do not close the Gladly window that you are logged into until you can log in into Gladly through the incognito window.

Was this article helpful?

0 Comments

Inline Feedbacks

View all comments

Contact Support

Can’t find the answer you need? Get in touch with the Gladly Support Team for assistance.

Would love your thoughts, please comment.x

()

| Reply

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
__cf_bm	29 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
_wpfuuid	1 year 1 month 4 days	This cookie is used by the WPForms WordPress plugin. The cookie is used to allows the paid version of the plugin to connect entries by the same user and is used for some additional features like the Form Abandonment addon.
BIGipServer*	session	Marketo sets this cookie to collect information about the user's online activity and build a profile about their interests to provide advertisements relevant to the user.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Advertisement" category.
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
PHPSESSID	session	This cookie is native to PHP applications. The cookie stores and identifies a user's unique session ID to manage user sessions on the website. The cookie is a session cookie and will be deleted when all the browser windows are closed.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.

Cookie	Duration	Description
li_gc	5 months 27 days	Linkedin set this cookie for storing visitor's consent regarding using cookies for non-essential purposes.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.

Performance

Analytics

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gd_session	4 hours	This cookie is used for collecting information on users visit to the website. It collects data such as total number of visits, average time spent on the website and the pages loaded.
_gd_visitor	1 year 1 month 4 days	This cookie is used for collecting information on the users visit such as number of visits, average time spent on the website and the pages loaded for displaying targeted ads.
_sp_id.*	1 year 1 month 4 days	Snowplow sets this cookie to store user information that is created when a user first visits a site and is updated on subsequent visits.
_sp_ses.*	30 minutes	Snowplow sets this cookie to store user information that is created when a user first visits a site and is updated on subsequent visits.
AnalyticsSyncHistory	1 month	Linkedin set this cookie to store information about the time a sync took place with the lms_analytics cookie.
mf_user	3 months	Mouseflow sets this cookie to identify whether a visitor is new or returning.
vuid	1 year 1 month 4 days	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos on the website.

Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.

Cookie	Duration	Description
_mkto_trk	1 year 1 month 4 days	This cookie, provided by Marketo, has information (such as a unique user ID) that is used to track the user's site usage. The cookies set by Marketo are readable only by Marketo.
bcookie	1 year	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser IDs.
bscookie	1 year	LinkedIn sets this cookie to store performed actions on the website.
li_sugr	3 months	LinkedIn sets this cookie to collect user behaviour data to optimise the website and make advertisements on the website more relevant.

Others

Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

Cookie	Duration	Description
_an_uid	7 days	No description available.
6suuid	1 year 1 month 4 days	No description available.
mf_98ebb315-7080-447b-a20f-9f1c64bcae56	session	Description is currently not available.
receive-cookie-deprecation	1 year 1 month 4 days	Description is currently not available.

Search Gladly Connect

Gladly Hero

Documentation highlights

Before you start #

Fetch updated metadata #

Share This Article:

Was this article helpful?

Maintain and Rotate SAML Certificates

Recently Added

How Gladly Search Works

CX Performance Indicator Benchmarks

AI Security and Compliance

November Releases

Most Popular

Glossary and Key Concepts

Q. Why do I keep getting errors when sending an email?

Log Into Gladly

November Releases

Contact Support