SAML token encryption provides an additional layer of security by ensuring that SAML assertions from Microsoft Entra ID are encrypted before being sent to WorkBoard. This prevents interception of token contents and protects personal and corporate data.
Follow the steps below to upload your WorkBoard-provided encryption certificate and enable token encryption for your Enterprise Application.
Before You start
To complete the configuration, you'll need:
Admin access to Microsoft Entra ID
The WorkBoard SAML Token Encryption Certificate, provided by the WorkBoard team
To contact WorkBoard Support or your assigned WorkBoard representative to finalize the setup
1. Navigate to the WorkBoard enterprise application in your Entra ID
Sign in to the Microsoft Entra Admin Center.
Go to Identity > Applications > Enterprise Applications.
Select your WorkBoard application from the list.
2. Open the Token Encryption Settings
In the left navigation panel, select Security.
Click Token encryption.
You will see the current token encryption status and any existing certificates.
3. Upload the WorkBoard Encryption Certificate
Select Import Certificate at the top of the page.
Upload the .cer certificate file provided by the WorkBoard team.
After uploading, select the certificate to Enable it for token encryption.
Confirm that the status updates to Active.
Your screen should now show the enabled certificate with a start date and expiration date.
4. Notify WorkBoard to complete the configuration
Once the certificate is enabled in Entra ID:
Contact WorkBoard Support or your WorkBoard Customer team.
Provide confirmation that the encryption certificate has been uploaded and enabled.
WorkBoard will then enable encrypted SAML assertions for your WorkBoard tenant.
Important: Token encryption will not take effect until WorkBoard completes the configuration on their side.
Need Help?
If you need the encryption certificate or assistance with the setup, please contact [email protected] or your WorkBoard representative.