Context
When configuring Okta SSO for MadKudu, a certificate with an expiration date is required. Once invalid, the certificate needs to be updated.
Unfortunately, Okta doesn’t warn its users of the certificate expiration. The Madkudu team will reach out proactively to your team when there’s a new certificate available.
How to verify Okta certificate
Step 1
Okta Admin > Applications > MadKudu
.png?sv=2022-11-02&spr=https&st=2025-05-21T12%3A14%3A58Z&se=2025-05-21T12%3A25%3A58Z&sr=c&sp=r&sig=OQwxfnt768a%2Bf9LzfgtKKEIUGkFcHN5GZji7c2aXsWw%3D)
Step 2
SAML Settings > General > Signature Certificate > verify that the year bracket in the name includes the current period.
In the image below, ‘2024-2027’ time bracket includes 2025 so you’re covered if looking at this tutorial in October 2025.
Note:
if there is no period mention in the name, it also mean it's invalid
How to update Okta certificate
Step 1
Download the valid certificate here
Step 2
Okta Admin > Applications > MadKudu > SAML Settings > “Edit”
Click “Next”, without changing anything
Note: The end of the URL displayed in the picture above /3303 should be replaced by your Madkudu tenant number in your Okta instance. It’s thus normal if you have a different URL displayed.
Click “Show Advanced Settings”
Upload the new certificate you just downloaded
Go to the end of the edit flow, without changing anything else.