Articles in this section

How to Update Templafy SSO Settings

Updated

This article details how to edit Templafy authentication methods in the Admin Center.

  Prerequisites

Templafy SSO Overview

Admins that have accessed Templafy via a specific authentication method cannot edit the details of that authentication method. This prevents admins from locking themselves out of Templafy altogether.

How to Update an Authentication Method

In order to edit an authentication method, an admin must sign in via a separate authentication method. Templafy recommends setting up email authentication to achieve this:

  1. Set up E-mail authentication.
  2. Invite a new user (with a unique email address) to the tenant.
    • Once the user has accepted the invite, grant the user Admin rights.
  3. Use that new admin to edit the existing authentication method
    • Available under Account -->Authentication.

  Note

Only one authentication method can exist per user.

How to Update a SAML2 Certificate

If your organization is leveraging the SAML2 SSO authentication method, you may need to replace the signing certificate (about every 3 years). Follow the steps below to create a new signing certificate and add it to the Templafy SAML2 authentication method:

  1. With Global Admin credentials, login to https://portal.azure.com/.
  2. Navigate to Enterprise Applications.
  3. Search for the Templafy SAML2 application.
  4. Click on Single sign-on.
  5. Under Step 3 SAML Certificates, click on Edit.
  6. Click New Certificate, edit the options as needed, and click Save.
  7. Navigate to your Templafy tenant, and sign in with E-mail authentication (as illustrated above).
  8. Click on Account --> Authentication --> Edit Details of your SAML2 authentication method.
  9. *If Manual configuration is set, and a Metadata location is populated:
    • Change the configuration option to Dynamic configuration - this ensures Templafy will be able to fetch the certificate information in real time without any user interaction.
  10. *If Manual configuration is set, and a Metadata location is not populated:
    • On the new, inactive certificate in Azure, click on the ellipsis and PEM certificate download.
    • Open the downloaded certificate and copy the contents of the signing certificate into the  Secondary signing certificate field in Templafy and click Save.
      • Do not replace the certificate that is already in the authentication method.
  11. Once the configuration is updated to Dynamic or the new signing certificate is set in Templafy, activate it back in Azure by selecting Make certificate active.

  Note

If you receive a Valid base64 required error in Templafy, be sure to delete line breaks within the signing certificate.

Related to

authentication sso update settings SAML2
Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.