Message integrity and privacy is achieved through the use of public-key cryptography in the transmission of identity data during a federation single sign-on (SSO) event. If there are any issues with the certificates being used, SSO will stop working.
This problem leads to many help desk calls and lost productivity. Jennifer Patton pointed out the importance of this technology in her February blog post on PingFederate and Certificate Management.
In working with customers, I often get asked about the options available for managing certificates in PingFederate and the best practices for their use. To see the best practices in action, join me in discussing the details of managing certificates in my next Technical Roundtable (TRT) on April 30. In this session I will be going over the following topics:
The types of certificates that are used in PingFederate
How to configure PingFederate so you are notified when certificates will expire
To keep an SSO configuration humming so that everyone can get to the resources they need, you need to properly manage certificates in your PingFederate environment.