If you use an unmanaged manual PingFederate connection as the identity provider (IdP) for PingOne for Enterprise, and your certificate is about to expire, you must update your signing certificate in PingFederate and your verification certificate in PingOne for Enterprise.
The instructions in this guide are deprecated. For existing unmanaged PingFederate connections to PingOne for Enterprise, you can update the verification certificate as an IdP certificate. For more information, see Updating a verification certificate in the PingOne for Enterprise documentation.
Unmanaged PingFederate connections are a legacy function. You can no longer create an unmanaged manual connection to PingFederate.
Components
- PingOne for Enterprise
- PingFederate 10.2
In PingFederate, go to and check whether your PingFederate connection is unmanaged. If your connection to PingOne for Enterprise is unmanaged, it's labeled SAML 2.0.
If you try to update an identity repository verification certificate for an unmanaged connection, PingOne for Enterprise generates a new activation key for use in creating a new managed connection to PingFederate. Because your user data and PingOne for Enterprise functionality depends on the settings in the existing connection, avoid creating a new connection.