Application key credential objects
contain an opaque key ID (
kid) and corresponding certificate.
To use the API
to share application key credentials between apps, you need to create and use a new credential in one app,
then share and update the credential in another app.
Sharing certificates is useful for Okta orgs that have apps with sign-on modes
SAML_2_0, SAML 1.1, or
When configuring multiple apps, you might need them to accept the same identity provider (IdP). In that case, the assertions from the two apps must be signed by the same key.
For this example, assume that you want to share a certificate between two instances of an app:
app1 is the source app, the app from
which you wish to share a certificate, and
app2 is the target app, the app that receives the source app's certificate.
This example also works if the apps are two instances of the same app, or two different apps.Next: