How to replace the Alma signing certificate expiring in October 2019?
- Product: Alma, Primo VE
- Product Version: any
- Relevant for Installation Type: Multi-Tenant Direct, Dedicated-Direct, Local, TotalCare
please work with your IT to update Alma and SAML IdP at the same time to avoid service interruption
1. Log into Alma
2. Go to the integration profiles section: Configuration Menu > General > External Systems > Integration Profiles
3. Open the SAML profile (with integration type as SAML)
4. Update the profile as the following:
a. In the “Alma metadata file version” dropdown menu, select the “Version 2025 …” certificate or “Signed certificate … 2021”.
b. Click “Save” button (top right) to save the changes
5. Update the profile as the following:
a. In the “Alma metadata file version” dropdown menu, select the “Version 2025 …” certificate or “Signed certificate … 2021”.
b. Click “Save” button (top right) to save the changes
6. Send the following metadata file link(s) to your IdP administrator:
2025 self signed:
https://<ALMA_BASE_URL>/view/saml/metadata?VERSION=VERSION_2025_NEW
https://<PRIMO_VE_BASE_URL>/view/saml/metadata?VERSION=VERSION_2025_NEW
OR 2021 DigiCert:
https://<ALMA_BASE_URL>/view/saml/metadata?VERSION=SIGNED_2021
https://<PRIMO_VE_BASE_URL>/view/saml/metadata?VERSION=SIGNED_2021
(If you have Primo VE, a second link with the PRIMO_VE_BASE_URL needs to be sent as well)
7. The IdP administrator uses the new certificate information in the metadata file(s) to update the related IdP relying party trust
- Article last edited: 26-SEP-2019