If your organization currently uses SSO with FloQast and has a certificate that is set to expire, please take the following steps to prevent service disruption and ensure a smooth transition.
- Export a Federation Metadata XML file with the current certificate as a rollback (optional).
- Activate the new certificate in your IdP.
- Export a new Federation Metadata XML file that includes the new certificate only.
-
Contact support@floqast.com and let us know that you’re interested in updating your SSO certificate. Please also provide the following information in your message.
- The new Federated Metadata XML file. A secure link can be provided upon request.
- A date and time when you would like the cutover to occur. Be sure to include your working time zone.
- A preference between performing the cutover offline outside of working hours or together over a live call.
- Once we upload the XML into our database, the certificate is updated immediately. Users can then test SSO to confirm.
FAQ
Q: Does FloQast support multiple certificates at once?
A: FloQast can apply one active certificate at a time. In the event that an XML file has more than one active certificate in it, FloQast will grab the first certificate listed, which may not be the correct one. Our recommendation is to produce an XML file that includes only the new certificate within it and to activate the new certificate before the old one expires, to prevent any service disruption for users once it is applied.
Q: Will users be logged out of FloQast once the updated certificate is applied?
A: Users will remain logged into FloQast via their active session token. Per usual, the application may eventually log the user out from inactivity or the user will log out manually. At which point a new SSO authenticated login will occur using the updated certificate.