Totara Learn Open Discussions

SP Certificate Limit in SAML Configuration

 
Teruaki Ichihara
SP Certificate Limit in SAML Configuration
by Teruaki Ichihara - Friday, 21 June 2024, 4:17 AM
Group Partners

Hi,


Has anyone had experience configuring SSO using SAML?

I have configured SAML Authentication for Azure. The SAML plugin is included as standard in Totara.

It seems the SP certificate was automatically set with a 10-year limit.

Is it possible to change the SP certificate limit?


Thanks

Simon Chester
Re: SP Certificate Limit in SAML Configuration
by Simon Chester - Wednesday, 26 June 2024, 9:21 PM
Group Totara

Hi Teruaki,

Currently the limit for certificates generated by Totara is fixed at 10 years.

Are you able to share a little about your use case -- are you wanting to make the limit longer or shorter?

We do have a future enhancement planned to ease certificate rollovers:

https://totara.community/local/publictracker/issuedetail.php?key=TL-37115

Kind regards,
Simon

Teruaki Ichihara
Re: SP Certificate Limit in SAML Configuration
by Teruaki Ichihara - Monday, 1 July 2024, 3:06 AM
Group Partners

Hi Simon,

Apologies for the delayed response.

I would like to know if it's possible to shorten the limit.

If so, I believe I can provide a safer option if my client requests it.

Thank you.