Updating a SAML connection using metadata - PingFederate - 10.3

PingFederate Server

bundle
pingfederate-103
ft:publication_title
PingFederate Server
Product_Version_ce
PingFederate 10.3
category
Product
pf-103
pingfederate
ContentType_ce

You can update an existing SAML connection using a metadata file or a metadata URL from your partner.

This manual update is independent from the optional and per-connection automatic update feature.

  1. Go to Applications > Integration > SP Connections.
  2. For the SAML connection that you want to update, click Select Action > Update with Metadata.
  3. See the following steps to import or update metadata. Instructions vary depending on the medium of the metadata.
    Metadata mediumSteps
    Metadata XML File
    1. On the Import Metadata window, select the File option.
    2. Choose the metadata file, and then click Next.
      Note:

      If the metadata file is digitally signed but the verification certificate is provided outside of the metadata, import the metadata verification certificate on the Import Certificate tab, and then click Next.

    3. On the Metadata Summary window, review the signature information to evaluate the authenticity of the metadata.
    4. Click Save.
    A metadata URL
    1. On the Import Metadata window, select the URL option.
    2. Select the metadata from the Metadata URL list.
      Tip:

      If the metadata you want is not shown in the list, click Manage Partner Metadata URLs and enter the URL in the text box.

    3. Click Load Metadata.
      Note:

      If there is a digital signature error, click Manage Partner Metadata URLs to resolve the issue.

    4. Click Save.
  4. On the Connections window, click Save.
Note:

If the endpoints in the metadata share the same base URL (protocol, hostname, and port), PingFederate uses this information to populate the Base URL field. Consequently, individual endpoints on other windows do not include this information. Only relative paths are shown.

Example

A service provider (SP) has just changed its signing certificate and published a new metadata with the new certificate. To minimize the impacts to your users, you as the identity provider (IdP) can update the SP connection using the metadata immediately.
  1. Access the SP Connectionswindow from Applications > Integration > SP Connections.
  2. For the applicable SAML connection, click Select Action > Update with Metadata.
  3. Follow the workflow to complete the task.