Symptom
You have received an email from us, regarding the regeneration of JWT Token Signing Key within the Trusted Applications in your tenant, desirable by the end of August 2024, failing which all your integrations with SAP CPQ will be affected from our 2411 SAP CPQ release in November this year.
Environment
SAP SALES CLOUD CPQ
Cause
- From 2405 CPQ release, generating JWT Token Signing Key within the Trusted Applications administration is now 128 characters long.
- This is done to ensure that the length of the JWT secret is satisfying minimum of security and this will be required for security patch that is planned to be deployed in near future.
Resolution
Please regenerate JWT Token Signing Key for all existing records with JWT Assertion Grant enabled, by following the below steps:
- Navigate to CPQ Setup
- Go to Security
- Go to Trusted Applications
- Edit an existing record
- Expand the 'JWT Assertion Grant' section
- Click on Generate New JWT Token Signing Key under the JWT Token Signing Key field
- Save.
Note: Please make sure to update the related external applications with this newly generated key from CPQ.
If you still have any concerns regarding this, please reply on the email that you received from us, or you can also reach out to Nikola Maric <nikola.maric@sap.com>.
"Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental."
See Also
Keywords
JWT Token Signing Key, regenerate, Trusted Applications, integrations, 2411 release, , KBA , CEC-SAL-CPQ , Sales Cloud CPQ , How To