[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?

ADFS 3.0 - Can the metadata.xml, specifically entityID signature change on the fly and does this break a relying party trust

Posted on 2017-12-06
1
Low Priority
?
17 Views
Last Modified: 2017-12-07
Hi All,

We have SSO setup with a SaaS provider as  a relying party trust.
The login broke to the SaaS application for several hours and was only fixed after we re-sent the metadata xml file.
The main change in the current and previous xml file was the <EntityDescriptor ID

The main question is: How can this change? Would it require human intervention to change or can it change on the fly or in response to some event?

Thanks,
Andy
0
Comment
Question by:Andy
1 Comment
 
LVL 7

Author Comment

by:Andy
I think I may have found a clue.

On 01/12/2017 the Token-Decrypting self signed certificate renewed, although it seems to have taken 6 days to cause an issue, this is the nearest change I can find on the ADFS server farm. I assume this can change the metadata? and why 6 days?

Thanks,
Andy
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Join & Write a Comment

Introduction In my previous article (http://www.experts-exchange.com/Microsoft/Development/MS-SQL-Server/SSIS/A_9150-Loading-XML-Using-SSIS.html) I showed you how the XML Source component can be used to load XML files into a SQL Server database, us…
The Confluence of Individual Knowledge and the Collective Intelligence At this writing (summer 2013) the term API (http://dictionary.reference.com/browse/API?s=t) has made its way into the popular lexicon of the English language.  A few years ago, …
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question