How to Renew Expiring Salesforce Certificates (SSL, SAML, and API)

Date de publication: Mar 25, 2026

Tâche

You want to renew your expiring Salesforce certificates.

Étapes

Go to Setup . In the Quick Find box, type 'Certificate and Key Management' and select it.
Review the list of certificates and identify the one that is about to expire. Note the certificate name and verify where it is used (e.g., Connected Apps, SSO Settings, Named Credentials).
To renew the certificate, you have two options:
1. Option A – Create a New Self-Signed Certificate:
  1. Click 'Create Self-Signed Certificate'.
  2. Enter a descriptive Label and Unique Name.
  3. Choose a Key Size (default is 2048) and click 'Save'
2. .Option B – Import a Certificate from Keystore:
  1. Click 'Import from Keystore' if you’re using a CA-signed certificate.
  2. Upload the new certificate file provided by your certificate authority.
  3. Click 'Save'.
Once the new certificate is created or imported, update all components that were using the old certificate.
Test all dependent systems (SSO logins, integrations, API calls) to confirm they work properly with the new certificate.

Numéro d’article de la base de connaissances

005226930

Cet article a-t-il résolu votre problème ?

Dites-nous ce que nous pouvons améliorer !