{"id":92298,"date":"2023-06-27T17:55:15","date_gmt":"2023-06-27T21:55:15","guid":{"rendered":"https:\/\/jumpcloud.com\/?post_type=support&p=92298"},"modified":"2024-03-01T15:58:39","modified_gmt":"2024-03-01T20:58:39","slug":"manage-application-idp-certificate-and-key-pairs","status":"publish","type":"support","link":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","title":{"rendered":"Manage Public Certificate and Private Key Pairs"},"content":{"rendered":"\n

A public certificate and private key pair are required to successfully connect applications with JumpCloud. This certificate and key pair are used during SAML handshakes to successfully authenticate users during an SSO login.\u00a0After you activate an application, JumpCloud automatically generates a public certificate and private key pair for you. You can use this pair or upload your own from the Application Details panel.\u00a0Learn how to generate a custom certificate and private key pair<\/a>.<\/p>\n\n\n\n

You can upload, download, and regenerate certificates from the Application Details<\/strong> panel. Additionally, you can view the status for both the certificate and public key on the Application Details<\/strong> panel, including the certificate\u2019s expiration date. Certificate and key status is indicated as grey if there isn\u2019t a certificate or key detected for the application. Status is indicated as green if a certificate and key are detected. <\/p>\n\n\n\n

<\/p><\/div>

Warning:<\/strong> \n

Your private key should be closely guarded. If this key has been lost or compromised, it should be regenerated immediately. An easy way to do this is to regenerate your certificate<\/a>. <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

When it gets close to the time when the certificate will expire, emails will be sent out to notify admins. These emails will be sent out with 60 days, 30 days, 7 days, and 24 hours before expiration. The emails contain a link labeled Regenerate Certificate <\/strong>that can be used to renew the public certificate. <\/p>\n\n\n\n

Uploading a public certificate<\/strong><\/h2>\n\n\n\n
    \n
  1. Go to USER AUTHENTICATION<\/strong> > SSO<\/strong> Applications<\/strong>.<\/li>\n\n\n\n
  2. Select an application from the list.<\/li>\n\n\n\n
  3. Expand the IDP Certificate status by clicking the triangle and then select Upload new certificate<\/strong>.<\/li>\n\n\n\n
  4. Browse to the certificate file and then click Open<\/strong>.<\/li>\n<\/ol>\n\n\n\n

    Uploading a private key<\/strong><\/h2>\n\n\n\n
      \n
    1. Go to USER AUTHENTICATION<\/strong> > SSO<\/strong> Applications<\/strong><\/strong>.<\/li>\n\n\n\n
    2. Select an application from the list.<\/li>\n\n\n\n
    3. Expand the IDP Private Key status by clicking the triangle and then select Upload IDP Private Key<\/strong>.<\/li>\n\n\n\n
    4. Browse to the private key file and then click Open<\/strong>.<\/li>\n<\/ol>\n\n\n\n

      <\/p><\/div>

      Warning:<\/strong> \n

      These must be uploaded in pairs, i.e., if you upload a new certificate, you must upload a new private key and vice versa.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

      Downloading a certificate<\/strong><\/h2>\n\n\n\n
        \n
      1. Go to USER AUTHENTICATION<\/strong> > SSO<\/strong> Applications<\/strong><\/strong>.<\/li>\n\n\n\n
      2. Select an application from the list.<\/li>\n\n\n\n
      3. Expand the IDP Certificate status by clicking the triangle and then select Download certificate<\/strong>.<\/li>\n\n\n\n
      4. The certificate will download to your local Downloads folder with the name certificate.pem.<\/li>\n<\/ol>\n\n\n\n

        <\/p><\/div>

        Tip:<\/strong> \n

        After the application is saved, you can also download the certificate by clicking Download Certificate <\/strong>in the notification in the upper-right corner of the screen.  <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

        Regenerating a certificate<\/strong><\/h2>\n\n\n\n

        <\/p><\/div>

        Note:<\/strong> \n

        You can’t regenerate a certificate until you activate an application connector.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n

          \n
        1. Go to USER AUTHENTICATION<\/strong> > SSO<\/strong> Applications<\/strong><\/strong>.<\/li>\n\n\n\n
        2. Select an application from the list.<\/li>\n\n\n\n
        3. Expand the IDP Certificate status by clicking the triangle and then select Regenerate certificate<\/strong>.<\/li>\n\n\n\n
        4. Click continue<\/strong>.<\/li>\n\n\n\n
        5. After you regenerate the certificate, the private key is also regenerated.<\/li>\n<\/ol>\n\n\n\n

          <\/p><\/div>

          Warning:<\/strong> \n

          If your SSO Service Provider uses JumpCloud metadata and you regenerate the certificate, you must export new metadata and upload it to the Service Provider.<\/p>\n <\/div><\/div><\/div><\/div>\n","protected":false},"excerpt":{"rendered":"

          A public certificate and private key pair are required to successfully connect applications with JumpCloud. This certificate and key pair […]<\/p>\n","protected":false},"author":205,"featured_media":0,"template":"","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"support_category":[2855,2902,2994],"support_tag":[],"coauthors":[2839],"acf":[],"yoast_head":"\nManage Public Certificate and Private Key Pairs - JumpCloud<\/title>\n<meta name=\"description\" content=\"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Manage Public Certificate and Private Key Pairs\" \/>\n<meta property=\"og:description\" content=\"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:modified_time\" content=\"2024-03-01T20:58:39+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/07\/202405-MISC-JumpCloudHelpCenter-SiteDisplay-min-2.png\" \/>\n\t<meta property=\"og:image:width\" content=\"890\" \/>\n\t<meta property=\"og:image:height\" content=\"525\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minutes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"joyjaswinski\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\",\"url\":\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\",\"name\":\"Manage Public Certificate and Private Key Pairs - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"datePublished\":\"2023-06-27T21:55:15+00:00\",\"dateModified\":\"2024-03-01T20:58:39+00:00\",\"description\":\"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Support\",\"item\":\"https:\/\/jumpcloud.com\/support\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Manage Public Certificate and Private Key Pairs\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Manage Public Certificate and Private Key Pairs - JumpCloud","description":"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","og_locale":"en_US","og_type":"article","og_title":"Manage Public Certificate and Private Key Pairs","og_description":"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.","og_url":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","og_site_name":"JumpCloud","article_modified_time":"2024-03-01T20:58:39+00:00","og_image":[{"width":890,"height":525,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/07\/202405-MISC-JumpCloudHelpCenter-SiteDisplay-min-2.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"2 minutes","Written by":"joyjaswinski"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","url":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs","name":"Manage Public Certificate and Private Key Pairs - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"datePublished":"2023-06-27T21:55:15+00:00","dateModified":"2024-03-01T20:58:39+00:00","description":"Learn how to upload an application certificate and private key, download an application certificate, and regenerate an application certificate.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/support\/manage-application-idp-certificate-and-key-pairs#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Support","item":"https:\/\/jumpcloud.com\/support"},{"@type":"ListItem","position":3,"name":"Manage Public Certificate and Private Key Pairs"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/92298"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/support"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/205"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/92298\/revisions"}],"predecessor-version":[{"id":106795,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/92298\/revisions\/106795"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=92298"}],"wp:term":[{"taxonomy":"support_category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_category?post=92298"},{"taxonomy":"support_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_tag?post=92298"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=92298"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}