As a part of SSO configuration, if you are using CSP (Druva) SSL certificate; such certificates have an expiry of a year and you need to update them accordingly. You can update these certificates 30 days before expiry.
You will receive an email notification and messages in the Druva Console to notify you about the certificate expiry. You need to download the certificate and update it in the IdP.
If you do not update these certificates, administrator logins to the Druva Console will be blocked. In such a situation, the DCP administrator must log in using failsafe and then update the certificates.
To update the SSO SAML certificate
- Login to the Druva console as a DCP administrator.
- In the left navigation pane, click Druva Cloud Settings. The Access Settings page is displayed.
- Edit the Single Sign-On settings.
A message is displayed to update the certificate.
- From the Edit Single Sign-on dialog box, download the SSO SAML certificate and upload it to the IdP. For more information, see Update IdP details.
- If you have already configured SSO, you will see the existing certificate and the new certificate suffixed with the New identifier.
- If you are configuring the SSO for the first time, only the latest certificate is available for download.
- Re-login to the Druva console.