Azure AD Application Certificate Renewal and 3rd Party Update

TechUser2020-6505 251 Reputation points
2022-05-25T12:42:25.187+00:00

Hello,
I've configured Azure AD SSO with ServiceNow using the guide below. We've configured a SAML certificate with a 3 year lifetime.

https://learn.microsoft.com/en-us/azure/active-directory/saas-apps/servicenow-tutorial

When it comes to renewal 2025, can ServiceNow (application service provider) automatically pull the new certificate and XML metadata?

I want to avoid a manual exchange of certs and XML if possible.

With ADFS, you can provide an XML URL that's publically available for the ADFS configuration, however, I don't know what the equivalent would be for Azure AD.

Please advise.

Thank you
205446-1.png

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,097 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Givary-MSFT 27,001 Reputation points Microsoft Employee
    2022-05-26T11:10:14.123+00:00

    @TechUser2020-6505 Thank you for reaching out to us.

    As I understand you are looking for an option to update the certificate ( new ) from automatically to ServiceNow.

    Did a quick repro at my end, I see there is App Federation Metadata Url ( available under SAML Signing Certificate Section ) which has certificate information which can be consumed by the application. this contains Active/Inactive certificate information.

    205848-image.png

    Let me know if you have any further questions.