SAML 2.0 Certificates
For security, your Security Assertion Markup Language (SAML) 2.0 certificate expires periodically. Under Single sign-on, you can view when your certificate expires. To retain your SSO connection, upload a new certificate before the current one expires.
Warning: To help prevent an inadvertent lockout, ensure you have another Blackbaud ID outside of your claimed domains with access to Authentication.
Upload a new certificate
-
In Admin, select Authentication.
-
Under Single sign-on, select Manage SSO settings.
-
In a separate browser tab, download a new certificate from your SAML IdP.
-
For Google Google Workflow, sign in to your Google Workflow admin console with an administrator account, select the SAML app used with your members' Blackbaud IDs, and then select Download under Certificate. For more information, see SAML 2.0 Setup for Google Workspace.
-
For JumpCloud, generate the certificate and then sign in to your JumpCloud administrative console with an administrator account, select Applications and the SAML app used with your members' Blackbaud IDs, and then select Upload IdP certificate. For more information, see SAML 2.0 Setup for JumpCloud.
Note: For information about how to generate the certificate for JumpCloud, see JumpCloud SAML Configuration Notes.
-
For OneLogin, sign in to your OneLogin administrator dashboard with an administrator account, select the SAML connection used with your members' Blackbaud IDs, and then, under SSO, select View details under the X.509 certificate field, and then Download. For more information, see SAML 2.0 Setup for OneLogin.
-
-
In Authentication, upload the new certificate.
-
Under Single sign-on, select Upload new certificate.
-
Select Choose file, then browse to and select the new privacy-enhanced electronic mail (PEM) or certificate (CER) file for your SAML connection.
-
Select Save.
-