Mirgrate SAML2 IDP METADATA
I want to migrate old accessmanger to new instance. when I import config by Code Promotion and import certificate.but the compare saml2 IDP metadata have some different.
So can migrate old instance saml2 metadata to new instance.
thanks for your support
You can definitely migrate SAML2 via Code Promotion. We just completed it, however we were using 3rd party signing certificates so we could easily transfer over the certificates.
By default the signing certificate is a self signed to the NAM instance CA. You could perhaps export the old signing certificate and root certificate import it into your new NAM.
You can either code promote the old IDP to the new one and move over the certificates, or manually recreate them. The key is the signing certificate.
You can assign a different signing certificate in the SAML connection, although as I look on my 4.5 Appliance I see that it's not there. I know it is there on another system that has the console only. On the Trust tab of your SAML configuration , you should be able to change the certificate.