HID Zscaler and ActivID AS using SAML User Manual

ActivID Appliance and Zscaler Web Security | SAML 2.0 Channel Integration Handbook

External Release | © 2012-2013 HID Global Corporation/ASSA ABLOY AB. All rights reserved.

Page | 8

2.4

Procedure 4: Import ActivID Appliance IDP certificate

1.

Before you can import the 4TRESS_IDP_SIGN.cer file, you must convert it to a .pem file using the Openssl
tool. Run the following:

openssl x509 -outform der -in 4TRESS_IDP_SIGN.cer -out 4TRESS_IDP_SIGN.der

openssl x509 -inform der -in 4TRESS_IDP_SIGN.der -out 4TRESS_IDP_SIGN.pem

2. After you convert the file, you can import the file 4TRESS_IDP_SIGN.pem file by clicking on Upload SSL

Public Certificate in the Zscaler Administrator Console Identity Provider (IDP) Options section, as
illustrated next: