Versions Compared

Old Version 17

changes.mady.by.user Sean McDade

Saved on

compared with

New Version Current

changes.mady.by.user Sean McDade

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Renewing an Existing Signed Certificate

Note

Warning - If a change to the FQDN is made during your renewal, SAML SSO configuration changes are required when FQDN SSL certificate renewalwill also be required

Updating the ZPC FQDN tied to your SSL certificate will break the SAML Single Sign-On functionality setup for ZPC and require adjustments to your Identity Provider (IdP) configuration.

Once a new SSL certificate is uploaded, users will be unable to sign in using SSO until you export the new Service Provider (SP) Metadata from the SAML Single Sign-On page and use it to adjust the Relying Party Trust configuration for ZIRO in your Identity Provider (IdP) configuration.

For more detailed steps, refer to the SSO setup walkthrough guides for your IdP (Azure, ADFS, Okta)

...

  1. Acquire the wildcard certificate from your IT team in the correct PEM format (Base-64 encoded X.509 - CER).

  2. Navigate to the System > Certificate Management page in ZPC and the Import Certificate tab and select the Wildcard Certificate option.

    image-20240109-140359.png

  3. Provide the unencrypted Private Key and specify the FQDN.

  4. Click Import.

  5. SSH into the ZIRO machine and log in using the s8admin account, then select Restart Web Server from the menu.

  6. Log back into ZPC from your browser and confirm the certificate has been successfully imported by checking the validity period.