14.2 Generating OSP Keystores

You can generate the signing and encrypting certificates for the SAML federation based third-party integrations. By default, the Advanced Authentication server has a signing and encrypting certificates. You can use the default certificates or generate new certificates based on your requirements. Generating new certificates delete the existing certificates and replace them with new certificates.

NOTE:The existing SAML2 federations break if you generate new OSP Keystores. Therefore, you must update the existing SAML2 federations with the new keys to re-establish the trust.