Skip to main content

Installing a SAML Certificate on the CxSAST Server

If the IdP certificate is signed directly by a trusted certification authority (CA) this step is not required. This step is only for instances where the CA trust-chain is not already trusted by the CxManager.

The below should be applied for the root and all intermediate CA keys.

To manually install the trusted certificate file:

  1. Go to Start > Run > MMC. The Console Root screen is displayed.

    SAML_1.jpg
  2. Go to File > Add/Remove Snap-in.

    saml1.png
  3. Under Available Snap-Ins, double-click 2880964603.png Certificates. The Certificates Snap-in screen is displayed.

    SAML_2.jpg
  4. Select Computer Account and click <Next>.

    SAML_3.jpg
  5. Click <Finish> and then <OK>.

    SAML_4.jpg
  6. From the Console Root screen, navigate to Certificates > Trusted Root Certification > Certificates.

    SAML_5.jpg
  7. Right-click Certificates and select All Tasks > Import from the shortcut menu. The Welcome to the Certificate Import Wizard is displayed.

    SAML_6.jpg
  8. Click <Next>. The File to Import screen is displayed.

    SAML_7.jpg
  9. Click <Browse> and navigate to the trusted certificate file (.cert).

  10. Click <Next>. The Certificate Store screen is displayed.

  11. Select Place all Certificates in the following store and verify that the selected Certificate Store is Trusted Root Certification Authorities.

  12. Click <Next>. The Certificate Import Completion screen is displayed.

    SAML_9.jpg
  13. Confirm the specified trusted root certificate import settings and click <Finish>.