Solved: Azure Active Directory is going to be rolling thei...

joxley · ‎06-30-2016

Azure Active Directory is going to be rolling their signing key shortly and does so on a regular basis.

Will Splunk handle the key rollover event automatically?

rdimri_splunk · ‎07-14-2016

If your certificate is about to expire then, you can re-import metadata again. Metadata generally will have two signing keys 1) That you are currently using 2) A newer key that has longer expiration date. When verifying signature Splunk will try to verify with both the keys. The verification of signature is considered successful if it can be verified against atleast one of the configured keys. You must use 6.4 onwards for this to work though

View solution in original post

rdimri_splunk · ‎07-14-2016

If your certificate is about to expire then, you can re-import metadata again. Metadata generally will have two signing keys 1) That you are currently using 2) A newer key that has longer expiration date. When verifying signature Splunk will try to verify with both the keys. The verification of signature is considered successful if it can be verified against atleast one of the configured keys. You must use 6.4 onwards for this to work though

Azure Active Directory is going to be rolling their signing key on a regular basis. Will Splunk handle the key rollover event automatically?

Index This | A sphere has three, a circle has two, and a point has zero. What is it?

Build Scalable Security While Moving to Cloud - Guide From Clayton Homes

Mission Control | Explore the latest release of Splunk Mission Control (2.3)