API Reference

Zero Trust

Identity Providers

Copy Markdown

Open in Claude

Open in ChatGPT

Open in Cursor

---

Copy Markdown

View as Markdown

SAML Certificate

Create SAML encryption certificate for Identity Provider

POST/accounts/{account_id}/access/identity_providers/{identity_provider_id}/saml_certificate

ModelsExpand Collapse

SAMLCertificateCreateResponse object { created_at, uid, updated_at, 2 more }

A SAML encryption certificate set containing current and optionally previous certificates for encryption key rotation.

created_at: string

Timestamp when the certificate set was created

formatdate-time

uid: string

Unique identifier for the certificate set

formatuuid

updated_at: string

Timestamp when the certificate set was last updated (e.g., during rotation)

formatdate-time

current_certificate: optional object { is_current, not_after, public_certificate, uid }

The currently active certificate used for encrypting SAML assertions

is_current: boolean

Indicates whether this is the currently active certificate

not_after: string

Certificate expiration date. Certificates are automatically rotated 30 days before expiration.

formatdate-time

public_certificate: string

PEM-encoded X.509 certificate containing the public key. Configure this certificate in your external SAML Identity Provider to enable encryption.

uid: string

Unique identifier for the certificate

formatuuid

previous_certificate: optional unknown

The previous certificate, maintained during rotation to ensure continuity. Null if no rotation has occurred. Mirrors the structure of saml_certificate.