When you use SSO to log in to Vendorlink, your Identity Provider (Microsoft Entra, Google, Okta, etc.) will occasionally change your certificate. We then need that certificate to read the message from the Identity Provider after logging in, to determine whether someone may indeed be logged in.
If your SSO connection is set up with a “MetaData Url”, this will happen automatically: we check daily whether the connection data (including the certificate) has changed, and if so, we update it.
How do you know if you have a link to a MetaData URL?
A user accessing the Admin module can see this in Admin > General Settings > Authorization and security, under the heading 'Single sign-on settings':
When a Metadata URL is entered here, updating the certificate is automatic and therefore no action is required.
If no Metadata URL has been entered here, please contact support. Perhaps we can simply convert the link so that it will happen automatically next time.