Did you know there is a utility to improve the login process for the eGain application and knowledge agent portals? You can now authenticate directly via the external IDP and speed up the sign-in process by simply enabling the Bypass eGain IDP for federated SSO utility.
Before you dive in and start using this utility, you need to do the following:
- Create a new relying party on your external IDP.
- Download the updated Request Signing Certificate and the Assertion Decryption Certificate, then upload them to your external IDP. Make sure to double-check that the certificates are activated during downtime. For additional guidance, please refer to the Certificate Renewal and Expiry Notification Emails section below.
- Configure the necessary SSO settings for the new relying party from the Administration Console. You can find detailed instructions right here.
We’re excited about how this tool can improve your experience and streamline the login process. If you have any inquiries or require further assistance, please do not hesitate to reach out in the forum.
Certificate Renewal and Expiry Notification Emails
We have also introduced some new settings to help you manage the certificate renewal process, including setting up the certificate expiry notification emails.
When it’s time to renew your Request Signing Certificate and the Assertion Decryption Certificate, it’s essential to upload them to your customer IDP while setting up single sign-on for SAML 2.0 systems. We have made it easy for you to stay on top of things by introducing notification emails that alert you when your certificates are due for renewal. As the expiration date of certificates approaches, individuals specified in the Certificate Expiry Notification Emails setting will receive an email alert. These notifications are automatically sent out to remind you to update your metadata on your Single Sign-On IDP. You can add up to ten email addresses to receive these notifications and ensure that they are valid. You can find more details on how to edit these settings in the “Sending Certificate Expiry Notification Emails” section of the Renewing Certificates topic.
Upon receiving the notification, you are prompted to download the renewed certificates, upload them to your customer IDP, and confirm their activation. The confirmation step is important and should be executed immediately after uploading the certificates to guarantee their activation on the eGain IDP. If you need more information on how to perform these steps, head over to the “Activating Renewed Certificates” section of the Renewing Certificates topic.
Hope this helps! Let us know if you have any questions or need further assistance.