Fix federation certificate expiry notification (Oxford vCloud)

Applies to: current and former vCloud users

Symptom

You have recently received an email titled "Federation certificate expiration notification" reading:

The federation certificate expiration is [DATE] [TIME]. An expired certificate may disable federation with the identity provider setup with your organization. The certificate can be regenerated from the Federation Settings page.

The federation certificate is used in the vCloud Director SAML Identity Provider as a basis for vDC user authentication. Unfortunately vCloud Director sends out the warning even if you are using local Active Directory rather than SAML for authentication.

Federation certificates are valid for one year and warning e-mails go out a week before they expire. The update process is fortunately very straightforward:

Solution

  1. Log into your vCloud environment and click on the Administration tab
  2. Choose Settings > Federation
  3. On the following screen Use SAML Identity Provider should be unchecked. If it is checked then please contact our Cloud Services Team and we will advise further
  4. Scroll to the Certificate section at the bottom of the screen, and click Regenerate
  5. A warning about the consequences of proceeding will be displayed. Provided Use SAML Identity Provider was unchecked earlier you can safely click on OK. The new certificate will be generated and the new expiry date displayed (it will be valid for one year)

Get support


Local IT support provide your first line of on-the-spot help

FIND MY LOCAL IT TEAM

 

Common requests and fault reports can be logged using self-service

   USE IT SELF-SERVICE      

   LOG A SUPPORT CALL     

VIEW MY SUPPORT CALLS  

 

The central Service Desk is available 24x7 on +44 1865 6 12345 (check central IT support arrangements over Christmas)

 

If you do not have an SSO account you can use this form to contact the Service Desk