The current SSL certificate for the Single-Sign-On feature (SSO) in Reflexion will be renewed on March 14th 2018. This article explains how to update this certificate on your ADFS server.
The following sections are covered:
Applies to the following Sophos products and versions Reflexion
The SSO feature makes use of this certificate to secure the connection between Reflexion and your federation service. Therefore, the new Reflexion certificate needs to be added to your AD FS Relying Party Trust configuration for SSO to continue to work properly.
If you are currently using this features, here are the steps to update the certificate on your ADFS server if you are using SSO:
1. Connect to your AD FS server that you have setup to perform SSO with Reflexion
2. Open the AD FS 2.0 Management application
3. In the management application, go to "Trust Relationships" -> "Relying Party Trusts"
The yellow warning sign indicates, that the certificate associated with Reflexion SSO is about to expire.
4. Right click on the Reflexion Relying Party Trust and select Properties
5. Change to the "Signature" window. You should see the following:
6. Click "Add" and select the provided Reflexion certificate (.cer format)
7. The result should look like this:
8. Once the old certificate expires, you can remove it from this list. Keep in mind that the old certificate is still in use until Reflexion updates the production certificate on March 14th 2018
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable to us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.