EntraID SSO - Secrets Rotation

[wneville]

Hello,

The secret for my Entra ID integration is expiring and I need to enter a new one. Is this possible with an existing tenant? Or do I need to create a new Tenant withing the SSO menu containing the new secret? Will anything happen to users added via the old tenant when it is removed?

Edit: I see this functionality referenced in the changelog but do not see it in the UI. Is there documentation on this?

[bbahn]

When your secret expires, your SSO UI will tell you and let you update it. Also in the next release (1.6), we just added it natively to the UI, so you can change your secret at-will.

[wneville]

That is great news, thanks so much for adding this feature - I look forward to the release of the new version

Cheers

[wneville]

Where can I make a feature request? Using cert auth for this integration would be awesome

Cheers

[wneville]

I would like to replace the Secret now and not wait until the current one expires and I am prompted and there is an interruption in access. If I remove the current tenant and re-add it with the new secret, will I lose users imported from the old tenant?

Edit: tried this in dev, and yes it removes the old users. Guess I will wait until access is lost because of expired secret, login with local admin user, and update the secret.... fingers crossed that the new version is released prior to then

[DoubleDoubleA]

Hi @wneville,

We try not to promise release dates specifically, if only because as soon as we do something happens that blows up the schedule, but somehow magically when we don't everything goes according to plan.

At the risk of tempting fate, I can say there is some possibility that it may be entirely likely that the next release ought to be approximately in line-ish with our recent release cadence over the last several months.

Aaron