Okta Certificates

For security, your Okta application's certificate expires periodically. Under Single sign-on, you can view when your certificate expires. To retain your SSO connection, upload a new certificate before the current one expires.

Warning: To help prevent an inadvertent lockout, ensure you have another Blackbaud ID outside of your claimed domains with access to Authentication.

Tip: To ease configuration, open Authentication and your Okta account in separate tabs of your browser. To successfully create an application in your Okta account, admin rights are required.

  1. In Admin, select Authentication, and then select Manage SSO settings under Single sign-on.

  2. In a separate browser tab, sign in to your Okta dashboard as an administrator, and download your application's certificate.

    1. In Applications, choose your application and select Sign On.

    2. Under Settings, select View Setup Instructions.

    3. Under X.509 Certificate, select Download certificate.

  3. In Authentication, update the certificate.

    1. Under Single sign-on, select Upload new certificate.

    2. Select Choose file, and then browse to and select the certificate downloaded from your Okta account.

    3. Select Save.