Steps to update M365 integration with the new signing certificate

Version Affected:  [All Versions]

Description:  

How to update M365 integration with the new signing certificate?

Cause:  

Since SecureAuth G3 signing certificates are expiring in May 2025, the new signing certificate must be updated in M365.

Resolution:  

Connect-MsolService # sign-in with global administrator.
$cert = "<CERT VALUE>" # Export the signing cert in base64 format, remove begin certificate, end certificate lines, and line breaks. Replace the <CERT VALUE> with the actual value in a single line with no breaks or space.
Set-MsolDomainFederationSettings -DomainName <your_domain_name> -SigningCertificate $cert
Get-MsolDomainFederationSettings -DomainName <your_domain_name> # To confirm if the signing cert is updated.

SecureAuth Knowledge Base Articles provide information based on specific use cases and may not apply to all appliances or configurations. Be advised that these instructions could cause harm to the environment if not followed correctly or if they do not apply to the current use case.

Customers are responsible for their own due diligence prior to utilizing this information and agree that SecureAuth is not liable for any issues caused by misconfiguration directly or indirectly related to SecureAuth products.