My jenkins.cer and saml-jenkins-keystore.jks certificate under JENKINS_HOME has expired causing integration with ADFS using SAML 2.0 to fail.
I did not find any documentation on how to update the certificate or keystore.
Infact, I do not even know the password to saml-jenkins-keystore.jks for making changes (updating the certificates) to the saml-jenkins-keystore.jks file.
Can you please help direct me as to what needs to be done inorder to get the jenkins.cer and saml-jenkins-keystore.jks renewed.
I tried deleting both jenkins.cer and saml-jenkins-keystore.jks and restarting Jenkins expecting it to recreate both the files afresh.
However, a restart does not create jenkins.cer and saml-jenkins-keystore.jks file.
I need to change the validity of jenkins.cer and saml-jenkins-keystore.jks for the ADFS integration to work.
I would also be interested in knowing the trust store password for saml-jenkins-keystore.jks
The expiration of Jenkins certificate causes integration between Jenkins and ADFS to break.
Kindly suggest.
There is no specific document for Jenkins default certificate expiration. Kindly try the below steps and check if it resolves your issue.
You need to remove certificates from JENKINS_HOME and restart jenkins service. Jenkins will generate new certificates. Remove the file from JENKINS_HOME: saml-jenkins-keystore.jks saml-jenkins-keystore.xml jenkins.cer and Restart Jenkins.
Try to get access Jenkins through web interface and it will generate a new saml-jenkins-keystore.jks saml-jenkins-keystore.xml
Generate jenkins.cer using the new jks keytool -export -alias saml-generated-keypair -keystore saml-jenkins-keystore.jks -rfc -file jenkins.cer.
Kindly let me know if you have any queries