This document provides information on how to publish Azure certificates. The certificates are published in an enterprise application that uses SAML. Once the publication is complete, the new certificate replaces the existing SAML configuration certificate.
Due to Azure limitations, we need to have full control on the previous Azure certificate, to do so, see the following steps:
Step 1: Create a request
To create a request in Certificate Manager, see How to create a request.
The encryption algorithm must be RSA and the certificate signature algorithm must be SHA256.
Step 2: Sign the request through any certificate authority
To sign a request in Certificate Manager, see How to sign a request.
Step 3: Download the signed certificate
To download a certificate, find the certificate you want to download, access its details and click the Certificate download button.
Step 4: Import the certificate to your enterprise application
- Access the Azure platform and log in to your Azure account.
- Locate the service Microsoft Entra ID.
- In the left menu, click Manage > Enterprise applications.
- Find your enterprise application and click on it.
- In the enterprise application, click Manage > Single sign-on.
- In the SAML Certificates section, click Edit.
- In the SAML Signing Certificate panel, click Import Certificate, select the certificate, enter the PFX password if applicable and click Add.
- Find the certificate previously added and click Options > Make certificate active.
- Click Yes to make the certificate active.
Step 5: Publish or renew your certificate
To publish or renew certificates, see How to publish a certificate and How to renew a certificate.
After publishing or renewing your certificate, make it active on your enterprise application.