Post date:
Wednesday, November 23, 2011 - 12:20
Description:
On wednesday 30 November at 8am, the certificate used to sign tokens in the SSO system will be renewed. The new certificate will keep the same keys, and will simply have a new 2 years validity (login.cern.ch CERN CA certificate, currently expiring on 5 january 2012).
The change should be transparent for standard central Shibboleth and IIS implementations.
Owners of custom SSO integrations should check if they need to reload their configuration with the new certificate details if the key verification is not enough.
Reason for this intervention:
The certificate has a 2 years validity and needs a regular renewal.
Effective from date:
Wednesday, November 30, 2011 - 08:00
End date:
Wednesday, November 30, 2011 - 08:15
Service Element Affected:
Multiple Services
Impact on service:
Intervention should be transparent
Posted by:
IT-OIS
Unit responsible for resolution:
IT Department