--- title: "METADATA AND CERTIFICATE FOR SAML REQUEST SIGNING – JULY 2025" slug: "metadata-and-certificate-for-saml-request-signing-july-2025" updated: 2025-07-10T20:44:40Z published: 2025-07-10T20:44:40Z canonical: "docs.catchpoint.com/metadata-and-certificate-for-saml-request-signing-july-2025" --- > ## Documentation Index > Fetch the complete documentation index at: https://docs.catchpoint.com/llms.txt > Use this file to discover all available pages before exploring further. # METADATA AND CERTIFICATE FOR SAML REQUEST SIGNING – JULY 2025 This article applies to customers that rely on SAML SSO and “Request Signing”. The certificate for **“saml.catchpoint.com”** will be expiring on **July 15th, 2025**, which will impact any customer that has enabled **“Request Signing”** for their IDP and Catchpoint Portal SAML Configuration. We have chosen to utilize self-signed certificates due to authority-signed certificates trending toward shorter expiration periods, with a goal of eventually reaching 47 days. These frequent renewals could be significantly disruptive, necessitating updates every six weeks. By opting for self-signed certificates, we can ensure consistent service and minimize operational interruptions. For additional information, you may refer to the following resource: [https://www.digicert.com/blog/new-certificate-lifetime-proposed-by-apple](https://www.digicert.com/blog/new-certificate-lifetime-proposed-by-apple) or explore other trusted industry documentation for further insights. On **July 10th,2025 at 12:00PM EDT**, Catchpoint will switch to using the new certificate. The certificate change will require your company to perform certain actions on your IDP. **Different IDP providers have different requirements for this use case, therefore we strongly advise you reference their documentation and carefully test any changes.** If you rely on this feature, you will have to perform one of the below actions. - **Disable** “Request Signing” in the IDP and on the Catchpoint portal configuration, to avoid disruption. You can then reenable it any time after **July 10th, 2025** after you have uploaded the new metadata or certificate. To disable this option on the Catchpoint portal configuration. Navigate to Settings>> SSO Identity Provider Page. **Disable the option shown in the below image and Save Changes.** ![image.png](https://cdn.document360.io/cb4af8f9-6751-4fd2-b39c-07aae832badb/Images/Documentation/image%2862%29.png) - **Update** the configuration in the IDP by uploading the new SAML metadata or the New Certificate after **July 10th, 2025 12:00PM EDT**. **Note that if you do not perform either of these two actions, your users will lose the ability to login into the Catchpoint portal via SSO.** In case you choose to update your configurations. You will have the below 2 options. - **Upload the New Metadata**– If your IDP allows you to modify an existing “Application” by uploading a metadata file, you can simply download the new Metadata and upload in the tool. [Catchpoint_SPMetadata 2.xml](https://cdn.document360.io/cb4af8f9-6751-4fd2-b39c-07aae832badb/Images/Documentation/Catchpoint_SPMetadata%202.xml) - **Upload New Certificate** - Some IDPs do not allow you to upload a new metadata for an existing “Application”, and you will need to upload the certificate. You can download our certificate in the below link, and upload in the IDP by following the instructions of your IDP. [sp_saml_public_cert_2025.cer](https://cdn.document360.io/cb4af8f9-6751-4fd2-b39c-07aae832badb/Images/Documentation/sp_saml_public_cert_2025.cer) **Our Support and Engineering teams will be on standby to offer any assistance. If you encounter any problems, please make sure to reach out to support@catchpoint.com and CC your CSM.** We are aware of the behaviours of these IDP Providers. - **Okta** only allows you to upload one certificate, so you must disable “Request Signing” and re-enable it with the new certificate **after July 10th, 2025.** - **Microsoft ADFS** allows you to have both the OLD certificate and the NEW certificate present to work. Therefore, for AFDS users we have listed steps below to add the new certificate to the portal. ### ADFS Instructions: • Open the ADFS Management Console • Under “Relying Party Trusts” find the entry for “Catchpoint” • Double-click on it to open it • Click on “Signature” Tab • You should see your current certificates, one of them should be expiring on **July 15th 2025.** ![image.png](https://cdn.document360.io/cb4af8f9-6751-4fd2-b39c-07aae832badb/Images/Documentation/image%2858%29.png) • Click “Add” • Select the New“saml.catchpoint.com.cer” file which is available in this document to download. ![image.png](https://cdn.document360.io/cb4af8f9-6751-4fd2-b39c-07aae832badb/Images/Documentation/image%2859%29.png) • Click “Open” • Click “OK” to save the changes of the “Relying Party Trusts” ![image.png](https://cdn.document360.io/cb4af8f9-6751-4fd2-b39c-07aae832badb/Images/Documentation/image%2860%29.png)