IA Advisory: Action required to continue accessing applications which use Michigan Medicine SAML/SSO Identity Provider Service before April 21, 2020

03/23/2020

Summary: This message is intended for HITS staff whose applications use the Michigan Medicine SAML/SSO Identity Provider service (weblogin.med.umich.edu).

Problem

The certificate that supports Michigan Medicine SAML SSO/Access Manager/Web log-in (weblogin.med.umich.edu) will expire on April 21, 2020. To avoid service interruptions after the current certificate expires, application Identity Provider (IDP) metadata must be updated.

About the April 21 deadline

Because this IDP metadata update is required to maintain access to applications – any application identified that is not updated by April 21 will lose access. These updates will take coordination between the IAM team and impacted applications teams, so plan ahead, and be proactive, to avoid any unnecessary downtime.

Action Items

For more information on setting up an application to use SAML SSO / Access Manager / Web log-in, please see Michigan Medicine SAML/SSO Configuration Primer.

Questions

Contact the IAM Team

Security