Totara Learn Open Discussions

SP Certificate Limit in SAML Configuration

 
Teruaki Ichihara
SP Certificate Limit in SAML Configuration
par Teruaki Ichihara, Friday 21 June 2024, 04:17
Groupe Partners

Hi,


Has anyone had experience configuring SSO using SAML?

I have configured SAML Authentication for Azure. The SAML plugin is included as standard in Totara.

It seems the SP certificate was automatically set with a 10-year limit.

Is it possible to change the SP certificate limit?


Thanks

Simon Chester
Re: SP Certificate Limit in SAML Configuration
par Simon Chester, Wednesday 26 June 2024, 21:21
Groupe Totara

Hi Teruaki,

Currently the limit for certificates generated by Totara is fixed at 10 years.

Are you able to share a little about your use case -- are you wanting to make the limit longer or shorter?

We do have a future enhancement planned to ease certificate rollovers:

https://totara.community/local/publictracker/issuedetail.php?key=TL-37115

Kind regards,
Simon

Teruaki Ichihara
Re: SP Certificate Limit in SAML Configuration
par Teruaki Ichihara, Monday 1 July 2024, 03:06
Groupe Partners

Hi Simon,

Apologies for the delayed response.

I would like to know if it's possible to shorten the limit.

If so, I believe I can provide a safer option if my client requests it.

Thank you.