Hello there!

Need Help? We are right here!

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com

Your Contact E-mail

What are you looking for

How can we help you?

Metadata Sync

Toggle: Update IdP settings by pinging metadata URL ? [Available in Premium or higher versions.]

When enabled, the plugin will automatically check your IDP’s metadata at your chosen frequency (hourly, twice daily, daily, weekly, or monthly) and update settings or certificates as needed.

SAML Metadata Sync Feature

Why This Is Important:

Many Identity Providers, such as Azure AD, rotate their signing certificates every 6 months for security.
If your plugin keeps using an expired or outdated certificate, SSO logins will fail.
Without this feature, you would have to manually update the certificate in WordPress whenever your IDP changes it.

Benefits of This Feature:

Zero Downtime for SSO: Always have the latest certificate, avoiding login failures during the certificate rotation (e.g., Azure rotates every 6 months).
Hands-Free Maintenance: No manual tracking or updates; the plugin auto-syncs from the IdP metadata.
Security Compliance: Keeps your SSO setup aligned with the IdPs latest security settings.
Flexible Sync Options: Choose how often to sync: hourly, twice daily, daily, weekly, or monthly.

Sync Only Certificates from Metadata: [optional]

If enabled, only the signing/encryption certificates will update other settings like URLs or Entity IDs will stay unchanged.

Prevents overwriting of custom settings.
Still ensures certificates are always fresh to avoid SSO downtime.
Recommended if your IDP changes certificates (like Azure) but not other settings.

Best Practice:

For IDPs like Azure AD that rotate certificates every 6 months, we recommend setting the sync to hourly or daily to minimize the risk of mismatches.

For more information visit our WordPress SSO page.