3247849 - Learning IPS - mTLS Certificate Expiration [2024]

IPS tenants have an expiring mTLS certificate on August 24th, 2024. If the certificate is not updated the following issues will occur:

• Real Time User Sync will not work correctly
• Creation of Learning Sites will not be possible

Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental.

• SAP SuccessFactors Learning
• SAP Cloud Identity Services

NEO IPS tenants:

1. Download the certificate from the attachments of this KBA, you may need to rename it to include the .crt extension before importing.
2. In the Identity Provisioning admin console, select the LMS source system.
   
   
3. Select the Inbound Certificates tab, choose Import, and select the new certificate. More info on managing certificates here.
4. Proceed to your IAS system
5. Access the admin record associated to your LMS integration, which would have a name/ID such as “SAP LMS – LMSTenantID”
6. Choose certificate and import it

Note make sure the admin or technical user has the permissions toggled on, see KBA 3248892 

Converged IPS tenants:

1. Import the new mTLS certificate into IPS tenant following the steps below: 
2. Download the certificate from the attachments of this KBA.
3. Proceed to your IAS system
4. Access the admin record associated to your LMS integration, which would have a name/ID such as “SAP LMS – LMSTenantID”
   
5. Choose certificate and import it

Note make sure the admin or technical user has the permissions toggled on, see KBA 3248892 

3248892 - "A new Learning-only user could not be created" - Learning IAS Real Time User Sync

IAS, IPS, cert, certificate, expired, expiration, user, creation, sync, real, time, update, read, job, , KBA , LOD-SF-LMS-IAS , LMS IAS Integration for External User , How To