Using BigFix Inventory SSL certificate for SSO based on SAML
By default, a self-signed certificate is used during the SSO configuration. However, you can reuse the BigFix Inventory server SSL certificate.
Procedure
- Navigate to the path install_dir\wlp\usr\servers\server1\server.xml.
-
Remove only
keyAlias="samlsp
andkeyStoreRef="SPKeyStore
from server.xml. - Open BigFix Inventory in a web browser.
-
Get the information about the certificate.
- Click on the Not secure label on the URL to display the window.
- Select the Certificate is not valid option above.
- Click on the Details tab.
- Export the certificate in base 64 encoded format.
-
Add the exported certificate to the Active Directory Federation Certificate
(ADFS).
- Navigate to ADFS management.
- Proceed to .
- Right-click on the available relying party and select Properties.
- Navigate to the encryption option.
- Remove the existing certificate.
- Click on Browse, and in the dropdown menu, select All Files.
- Upload the downloaded certificate.
- Restart the BigFix Inventory server.