Run the AD FS command
Update-AdfsCertificate to update
the Token certificates. After updating the certificates, you must specify the metadata
endpoint for AD FS from the
Hitachi Ops Center Portal, and then update the information about AD FS registered in Common
Services.
Note: For details about Token certificates and the command, see the AD FS
documentation.
-
Log in to the AD FS server.
-
To change the update interval of Token certificates, run the following command in
PowerShell:
Set-AdfsProperties -CertificateDuration update-interval-(number-of-days)
The
change will take effect the next time the Token certificates are updated after
you change the update interval.
- Example of 3 years:
Set-AdfsProperties -CertificateDuration 1095
-
If you want the change to take effect immediately, run the following command in PowerShell
to update the Token certificates:
Update-AdfsCertificate -CertificateType Token-Decrypting -Urgent
Update-AdfsCertificate -CertificateType Token-Signing -Urgent
-
Log in to the Hitachi Ops Center
Portal as the sysadmin user or as a user who is a member of the opscenter-administrators
group.
-
In the navigation bar, click Manage users.
-
In Asset type in the Users window, click Identity
providers.
-
Click the Edit identity provider icon for the registered
identify provider.
-
For AD FS endpoint metadata URI, set the metadata
endpoint for AD FS.
-
Click Next without changing any other values.
-
In the Edit identity provider - confirmation window,
click Submit.