azure-docs icon indicating copy to clipboard operation
azure-docs copied to clipboard

Published 20 hours ago verified publisher icon MicrosoftDocs

Can you add something around the source of the Certificate please?

Open robfinney opened this issue 2 years ago • 3 comments

Can you provide some information around what type of Certificate can be used for configuring the SAML Certificate for Single Sign-on - i.e. does it need to be an external Certificate or can an internal certificate be used?

Document Details

Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.

robfinney avatar Feb 14 '23 12:02 robfinney

@robfinney Thanks for your feedback! We will investigate and update as appropriate.

Naveenommi-MSFT avatar Feb 14 '23 15:02 Naveenommi-MSFT

Hi @robfinney It is recommended to use a certificate from a trusted CA for production environments, as it provides a higher level of security and trust. Self-signed certificates are suitable for testing and development environments.

For you information Please refer the below in documented link You can find more information about configuring the SAML certificate for single sign-on in the Azure Active Directory documentation

https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/add-application-portal-setup-sso https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/certificate-signing-options

ManoharLakkoju-MSFT avatar Feb 15 '23 12:02 ManoharLakkoju-MSFT

Thanks for the response @ManoharLakkoju-MSFT but unfortunately that wasn't the question I was asking - I know that a Self-Signed Cert isn't as secure but more if there is any recommendation around the certificate being from an internal certificate authority (I.e. from an internal PKI) or from an external certificate authority (such as digicert).

Can you let me know on this point please?

robfinney avatar Feb 15 '23 12:02 robfinney

@robfinney I'm going to assign this to the document author so they can take a look at it accordingly

@omondiatieno Can you please check and add your comments on this doc update request as applicable.

ManoharLakkoju-MSFT avatar Feb 16 '23 08:02 ManoharLakkoju-MSFT

@robfinney, thank you for reaching out. I've raised a PR to update the mentioned article to clarify on what sources of certificates are recommended for different scenarios depending on what the organization uses.

Feel free to reach out incase you need any further clarification.

omondiatieno avatar Mar 10 '23 13:03 omondiatieno