PeopleFluent Notification - SSO SAML Certificate Expiration - 2022
ACTION REQUIRED - PeopleFluent Notification - SSO SAML Certificate Expiration - 2022
Dear PeopleFluent Customers and Partners,
PeopleFluent’s Single Sign On security makes use of a single digital certificate for both encryption and digital signatures for SAML assertions. This certificate is set to expire on March 30, 2022. To prevent disruption in the use of PeopleFluent products after the certificate expires, PeopleFluent is requesting customers to make necessary configuration changes at the earliest possible time between March 2, 2022 and March 29, 2022. NOTE: The TEST/UAT/V1 Certificate will be available on March 2, 2022 and PRODUCTION Certificate will be available on March 16, 2022. Please perform the below mentioned steps in the service that defines PeopleFluent as a Relying Party. This could mean ADFS, Okta, Azure AD, or other providers.
- Download the new certificate from - https://www.peoplefluent.net/
saml.peoplefluent.com_exp2023- 02.crt. The new certificate is valid until February 1, 2023.
- Replace the previous certificate with the new certificate in the Encryption configuration area (Note that Azure Active Directory does not support encryption of a SAML assertion so there is likely nothing to do for this step if you use Azure AD).
- If you perform signature verification of our iPaaS SSO AuthN requests, add the new certificate to the Signature Verification configuration area which means you will have both the old and the new certificate in this area until the old certificate expires.
- If your PeopleFluent Relying Party is already configured to update automatically based on the PeopleFluent metadata, then after March 16, 2022, please verify that the new certificate was updated in the Relying Party configuration. If you do not know how to access PeopleFluent metadata, please contact our Support Team.
Between March 2, 2022 and March 29, 2022, both the old AND new certificates will work and there will be no disruption of service. However, after March 29, 2022, only the new certificate will work. Once you have completed the steps above, no further action will be needed on your part. You may choose to remove the old signing certificate after March 30, 2022. We hope that this advance notice will help with the scheduling of these configuration changes.
PeopleFluent requests customers to coordinate with their internal technical staff and take preemptive measures to ensure there is no disruption in accessing PeopleFluent products after March 30, 2022. We also request you to test and make the changes first in the V1/UAT/TEST environment before making the changes in production. If you need assistance in testing, please contact our Support Team.
Please share this information with other system users as needed. If you have any questions or concerns regarding this matter, please contact our Support Team.
USA: +1 (800) 841-2365 or +1 (919) 645-2899
UK: +44 (207) 832-3444
Case Management System: https://support.peoplefluent.
Customer Community: https://customers.