Back to Docusign.com
Hello,
Our users can’t login to Docusign for over two weeks because the SSO certificate from IdP Azure expired.
To my knowledge we have ‘require all users to log in via SSO” policy in place, and bouncing of walls. We’ve already went thorough domain verification (DNS records & GUID) and there’s no further communication from Support.
How can we resolve this problem? We need our service back.
Thanks,
HicITDS
Solved
Expired SSO certificate, users can't log-in and use service
+1- Newcomer
- 1 reply
Best answer by Michael.Rave
This is exactly the reason why Docusign Administrators should have a login policy that allow them to always use email address and password as a backup to log into Docusign.
The best way to resolve this is create a support case and ask them to disable the identity provider for your organisation, then you can login with your Administrator credentials, update the login policy, upload the new certificate and enable SSO again.
This Docusign Support article has additional information.
+19- Docusign Employee
- 1019 replies
- Answer
This is exactly the reason why Docusign Administrators should have a login policy that allow them to always use email address and password as a backup to log into Docusign.
The best way to resolve this is create a support case and ask them to disable the identity provider for your organisation, then you can login with your Administrator credentials, update the login policy, upload the new certificate and enable SSO again.
This Docusign Support article has additional information.
+1- Newcomer
- 1 reply
Hello
Once the service is up & accessible for us, we’ll definitely implement a separate login policy for DocuSign Administrator as per the doc you’ve included, but the problem seems to be more complex than initially though. Our Docusign Admin (which was also the Docusign Org Admin) is no longer with the company, as per our policy and account provision that account was removed (not sure if automatically or manually i.e. by Azure provision or manually by DS Admin, I could probably find out). In some companies sometimes there’s one possibly two Docusign Org Admins (Not DS Admins) and we need to take under the consideration accessing this system by ‘local’ none SSO accounts by ex-employees, hence the SSO across the board even for Admins. Perhaps the way to go forward is by creating Admin service account with none SSO login policy (MFA, password rotation, etc) so that we may go (unwillingly) through a staff rotation and it wouldn’t affect us again event if that employee leaves the company on a hurry.
- Community Moderator
- 1120 replies
Hello
I hope you are doing well.
I want to confirm if you were able to solve your issue by utilizing the suggested solution or if the information provided was useful.
Let me know, and I will gladly help you address the situation as soon as possible.
Ma. Cassandra | Docusign Community Moderator
Mark as “Best Answer” if this helped clarify things.
Sign up
Already have an account? Login
You can login or register as either a Docusign customer or developer. If you don’t already have a Docusign customer or developer account, you can create one for free when registering.
Customer Login/Registration Developer Login/RegistrationDocusign Community
You can login or register as either a Docusign customer or developer. If you don’t already have a Docusign customer or developer account, you can create one for free when registering.
Customer Login/Registration Developer Login/RegistrationEnter your E-mail address. We'll send you an e-mail with instructions to reset your password.