You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Support for dual certificates in HCM API authentication

in Identity and Access Management

Summary:

HCM supports dual certificates in the single sign-on SAML for identity providers, but it appears that there is not a way to support dual certificates for the inbound API authentication public certificates. If a second certificate is added for a given trusted issuer, the new certificate immediately replaces the prior, so we cannot add the new certificate before the prior expires. This causes a required API down-time to update these certificates within HCM after the prior expires.

If anyone has any ideas on how this could be done, it would be appreciated.

Version (include the version you are using, if applicable):

Tagged:

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!