How to Convert an X.509 Certificate to a SHA1 Fingerprint for SAML

Converting an X.509 Certificate to a SHA1 Fingerprint for SAML

When setting up SAML with your identity service provider, you will need a SHA1 fingerprint. However, some identity service providers will give you an X.509 certificate that you need to convert.

Follow the steps below to convert your X.509 Certificate into a SHA1 fingerprint:

1. Obtain the X.509 certificate from your identity service provider.
2. Navigate to https://www.samltool.com/format_x509cert.php.
3. Paste your X.509 certificate in the X.509 cert field.
4. Click Format X.509 Certificate.

5. Copy the certificate indicators in the X.509 cert with header field. Certificate indicators will display within hyphens.

   Note: If line breaks display in the pasted certificate indicator, they will need to be deleted. Line breaks may cause the fingerprint to calculate incorrectly.

6. Click Calculate Fingerprint from the toolbar on the left.

7. Paste the copied text into the X.509 cert field.
8. Select sha1 from the algorithm drop-down.
9. Click Calculate Fingerprint.

Now that you have your SHA1 Fingerprint, you can continue setting up your SAML login. Please see our How to Set Up SAML/SSO for the Security Awareness Training Platform article for more information.

Back to Top