HomeEnterprise GuideUser Guides
Search…
Keeper SSO Connect On-Prem
Overview
System Requirements
Installation and Setup
Identity Provider Setup
High Availability (HA) Configuration
Integration with AWS CloudHSM
Integration with Gemalto HSM
Upgrading SSO Connect
Update Instructions
Updating On-Prem Config
Migrating to a new SSO Connect Server
End-User Login Flow
Service Management
Troubleshooting & FAQs
Creating SSL Certificates
SSO Migration to Cloud
Technical Support
Links and Resources
Docs Home
Powered By GitBook
Updating On-Prem Config
Changing the SSL certificate, hostname, or the metadata configuration in SSO Connect On-Prem
SSO Connect On-Prem SSL certificates must be updated on an annual basis, or there may be times that the metadata.xml file needs to be updated on the SSO Connect server. Follow these instructions:
  1. 1.
    Login to the SSO Connect On-Prem server and click the "Configuration" tab. Make the desired change (update SSL certificate, hostname change, update IdP SAML metadata, etc.).
  2. 2.
    Save the changes. (This replicates the changes to the Keeper Cloud).
  3. 3.
    If multiple SSO Connect servers (HA configuration) are present in your architecture, no further steps are required as each subsequent SSO Connect server will synchronize to the cloud and update. However, to force the sync, click on “Full Sync” on the SSO connect menu on each server.
From the Keeper Cloud perspective, there is no primary or secondary SSO Connect server in an HA configuration. There is a single SSO Connect data back up (per SSO Connect provisioning instance) that synchronizes to all the servers architected for HA.
Do not delete the SSO Connect provisioning instance on the Admin Console. Doing so will remove the configuration and orphan your SSO Connect servers.
Previous
Update Instructions
Next
Migrating to a new SSO Connect Server
Last modified 1mo ago
Export as PDF
Copy link