{"id":3008,"date":"2023-03-11T17:04:18","date_gmt":"2023-03-11T23:04:18","guid":{"rendered":"https:\/\/www.teamdesk.net\/blog\/?p=3008"},"modified":"2023-03-11T17:04:19","modified_gmt":"2023-03-11T23:04:19","slug":"single-sign-on-certificate-options","status":"publish","type":"post","link":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/","title":{"rendered":"New Single Sign-on certificate options"},"content":{"rendered":"\n<p>With recent <a href=\"https:\/\/www.teamdesk.net\">TeamDesk<\/a> update we added new single sign-on certificate options to allow using custom certificates for data encryption. Why is this important?<\/p>\n\n\n\n<p>As the part of the login\/logout process Identity Provider and Service Provider exchange with messages. Messages are encrypted with asymmetric cryptography. This is one party have private key to encrypt the message and other party or parties have public key to decrypt (but not encrypt) the message. Private key is kept secret at first party. And Identity and Service providers pass public keys to each other as a part of the setup process. <\/p>\n\n\n\n<p>The <a href=\"https:\/\/en.wikipedia.org\/wiki\/X.509\" target=\"_blank\" rel=\"noreferrer noopener\">certificate<\/a> is the convenient way to pack keys and other data such as issuer, whom the certificate issued to and its validity period together. But once one party changes the certificate you should update the other.<\/p>\n\n\n\n<p>Previously to encrypt single sign-on communication we were using the same certificate we use to encrypt HTTPS traffic. But it has its own lifetime, and if we change it without prior notice we may break single sign-on. No longer.<\/p>\n\n\n\n<p>With new single sign-on certificate options we added an ability to generate self-signed certificate dedicated for encryption and valid for 10 years. And if you want even more control, you can upload your own one. Or, if you are fine with our HTTPS certificate, choose &#8220;default certificate&#8221;.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full is-resized\"><a href=\"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/image.png\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/image.png\" alt=\"New Single Sign-on certificate options\" class=\"wp-image-3009\" width=\"566\" height=\"287\" srcset=\"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/image.png 1132w, https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/image-300x152.png 300w, https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/image-1024x519.png 1024w, https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/image-768x389.png 768w\" sizes=\"auto, (max-width: 566px) 100vw, 566px\" \/><\/a><\/figure>\n\n\n\n<p>And as a little bonus, clicks on the links in Service Provider section now copy the URL to clipboard.<\/p>\n\n\n\n<p>Enjoy!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>With recent TeamDesk update we added new single sign-on certificate options to allow using custom certificates for data encryption.<\/p>\n","protected":false},"author":4,"featured_media":3011,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[300,255],"class_list":["post-3008","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-whats-new","tag-certificate","tag-single-sign-on"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>New Single Sign-on certificate options - TeamDesk Blog<\/title>\n<meta name=\"description\" content=\"With recent TeamDesk update we added new single sign-on certificate options to allow using custom certificates for data encryption.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"New Single Sign-on certificate options - TeamDesk Blog\" \/>\n<meta property=\"og:description\" content=\"With recent TeamDesk update we added new single sign-on certificate options to allow using custom certificates for data encryption.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/\" \/>\n<meta property=\"og:site_name\" content=\"TeamDesk Blog\" \/>\n<meta property=\"article:published_time\" content=\"2023-03-11T23:04:18+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-03-11T23:04:19+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/certificate.png\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"800\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Kirill Bondar\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kirill Bondar\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/\"},\"author\":{\"name\":\"Kirill Bondar\",\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/#\\\/schema\\\/person\\\/22c4c05bd657513c8b00122fa364c8d2\"},\"headline\":\"New Single Sign-on certificate options\",\"datePublished\":\"2023-03-11T23:04:18+00:00\",\"dateModified\":\"2023-03-11T23:04:19+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/\"},\"wordCount\":244,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/certificate.png\",\"keywords\":[\"certificate\",\"single sign-on\"],\"articleSection\":[\"What's New\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/\",\"url\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/\",\"name\":\"New Single Sign-on certificate options - TeamDesk Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/certificate.png\",\"datePublished\":\"2023-03-11T23:04:18+00:00\",\"dateModified\":\"2023-03-11T23:04:19+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/#\\\/schema\\\/person\\\/22c4c05bd657513c8b00122fa364c8d2\"},\"description\":\"With recent TeamDesk update we added new single sign-on certificate options to allow using custom certificates for data encryption.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/certificate.png\",\"contentUrl\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/03\\\/certificate.png\",\"width\":800,\"height\":800},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/whats-new\\\/single-sign-on-certificate-options\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"New Single Sign-on certificate options\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/\",\"name\":\"TeamDesk Blog\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/#\\\/schema\\\/person\\\/22c4c05bd657513c8b00122fa364c8d2\",\"name\":\"Kirill Bondar\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/dc5bc844095b5753ccc73c589c028bf16615674f289668146bbd59205a08a52d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/dc5bc844095b5753ccc73c589c028bf16615674f289668146bbd59205a08a52d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/dc5bc844095b5753ccc73c589c028bf16615674f289668146bbd59205a08a52d?s=96&d=mm&r=g\",\"caption\":\"Kirill Bondar\"},\"url\":\"https:\\\/\\\/www.teamdesk.net\\\/blog\\\/author\\\/kirill-bondar\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"New Single Sign-on certificate options - TeamDesk Blog","description":"With recent TeamDesk update we added new single sign-on certificate options to allow using custom certificates for data encryption.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/","og_locale":"en_US","og_type":"article","og_title":"New Single Sign-on certificate options - TeamDesk Blog","og_description":"With recent TeamDesk update we added new single sign-on certificate options to allow using custom certificates for data encryption.","og_url":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/","og_site_name":"TeamDesk Blog","article_published_time":"2023-03-11T23:04:18+00:00","article_modified_time":"2023-03-11T23:04:19+00:00","og_image":[{"width":800,"height":800,"url":"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/certificate.png","type":"image\/png"}],"author":"Kirill Bondar","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Kirill Bondar","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/#article","isPartOf":{"@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/"},"author":{"name":"Kirill Bondar","@id":"https:\/\/www.teamdesk.net\/blog\/#\/schema\/person\/22c4c05bd657513c8b00122fa364c8d2"},"headline":"New Single Sign-on certificate options","datePublished":"2023-03-11T23:04:18+00:00","dateModified":"2023-03-11T23:04:19+00:00","mainEntityOfPage":{"@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/"},"wordCount":244,"commentCount":0,"image":{"@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/#primaryimage"},"thumbnailUrl":"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/certificate.png","keywords":["certificate","single sign-on"],"articleSection":["What's New"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/","url":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/","name":"New Single Sign-on certificate options - TeamDesk Blog","isPartOf":{"@id":"https:\/\/www.teamdesk.net\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/#primaryimage"},"image":{"@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/#primaryimage"},"thumbnailUrl":"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/certificate.png","datePublished":"2023-03-11T23:04:18+00:00","dateModified":"2023-03-11T23:04:19+00:00","author":{"@id":"https:\/\/www.teamdesk.net\/blog\/#\/schema\/person\/22c4c05bd657513c8b00122fa364c8d2"},"description":"With recent TeamDesk update we added new single sign-on certificate options to allow using custom certificates for data encryption.","breadcrumb":{"@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/#primaryimage","url":"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/certificate.png","contentUrl":"https:\/\/www.teamdesk.net\/blog\/wp-content\/uploads\/2023\/03\/certificate.png","width":800,"height":800},{"@type":"BreadcrumbList","@id":"https:\/\/www.teamdesk.net\/blog\/whats-new\/single-sign-on-certificate-options\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.teamdesk.net\/blog\/"},{"@type":"ListItem","position":2,"name":"New Single Sign-on certificate options"}]},{"@type":"WebSite","@id":"https:\/\/www.teamdesk.net\/blog\/#website","url":"https:\/\/www.teamdesk.net\/blog\/","name":"TeamDesk Blog","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.teamdesk.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.teamdesk.net\/blog\/#\/schema\/person\/22c4c05bd657513c8b00122fa364c8d2","name":"Kirill Bondar","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/dc5bc844095b5753ccc73c589c028bf16615674f289668146bbd59205a08a52d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/dc5bc844095b5753ccc73c589c028bf16615674f289668146bbd59205a08a52d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/dc5bc844095b5753ccc73c589c028bf16615674f289668146bbd59205a08a52d?s=96&d=mm&r=g","caption":"Kirill Bondar"},"url":"https:\/\/www.teamdesk.net\/blog\/author\/kirill-bondar\/"}]}},"_links":{"self":[{"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/posts\/3008","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/comments?post=3008"}],"version-history":[{"count":2,"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/posts\/3008\/revisions"}],"predecessor-version":[{"id":3012,"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/posts\/3008\/revisions\/3012"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/media\/3011"}],"wp:attachment":[{"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/media?parent=3008"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/categories?post=3008"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.teamdesk.net\/blog\/wp-json\/wp\/v2\/tags?post=3008"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}