Skip to main content

User Guide: Fannie Mae Federated Single Sign-On Manager

The Federated Single Sign-On Manager Tool is a powerful utility designed to streamline the configuration of certificates for customers’ IDP administrators (“IDP Administrators”). By leveraging this tool, IDP Administrators can effortlessly manage certificates, ensuring seamless integration with Fannie Mae applications and a smoother authentication process for customers and their end-users.

IDP Administrators will be able to perform the following configurations using the Fannie Mae Single Sign-On Manager:

  1. Download SP certificates: IDP Administrators can download Fannie Mae’s certificates for customer side setup.
  2. Upload and activate your IDP certificates: IDP Administrators can upload and activate their IDP certificates within our system.

Frequently Asked Questions

This tool is exclusively intended for IDP Administrators who utilize federated SSO with Fannie Mae.

IDP Administrators need to have the FEDSSO_Federation_IDP_Admin role to access this tool. Please reach out to customer admin for your organization to add this role to your Fannie Mae ID.

Fannie Mae Certificates are the Service Provider (SP) certificates utilized by Fannie Mae for federated SSO configuration purposes.

“Your certificate” refers to your company specific IDP certificates that must be confirmed within Fannie Mae systems to ensure seamless integration.

Only users with Administrator roles from your organization have the authority to change certificates.

Yes, you may add the FEDSSO_Federation_ReadOnly role to grant read-only access to selected business users.

Failure to update certificates may disrupt the federation SSO flow, resulting in users being unable to access Fannie Mae’s applications.

How to Set Up a New Fannie Mae Certificate

This section explains how to set up a new Fannie Mae Certificate.

  1. Launch the Federation Portal application from Fannie Mae federated portal page. Federated Certificate Management

    Note: If you are an IDP Administrator and not able to see Certificate Management tile, please reach out to your Corporate Administrator to add the FEDSSO_Federation_IDP_Admin role. If you need the read only role, please reach out to your Corporate Administrator to add the FEDSSO_Federation_ReadOnly role.

  2. From the Certificate Manager page, click on the Fannie Mae Certificates. Fannie Mae Certificates

    Note: In the Overview tab, you will see any certificates that are expiring soon, and you can click the View Your Certificates link, which will direct you to that particular certificate update.

  3. From Fannie Mae certificates header, click Set Up Certificate. Set Up Certificate
  4. Click Download Certificate. Download Certificate
  5. You will see a pop-up message confirming the certificate is now downloading. New Certificate Downloading

    Note: Once you the download Fannie Mae Certificate, please configure the certificate in your system. You can always come back here to activate the new certificate after configuration.

  6. Click the check box confirming you have configured the new certificate in your system, then click Continue. Set Up New Fannie Mae Certificate

    Note: This is a critical step. Please make sure you have configured the certificate in your system before activating the certificate. Failure to configure the certificate before activation will result in access issues for all users in your organization.

  7. The new Fannie Mae certificate is about to be activated. Click Activate Certificate to continue. This will deactivate the old certificate. Activate Certificate
  8. You will see a pop-up message confirming the certificate was successfully activated. Certificate Activated
  9. Click the View More button to see more information about the certificate. Certificate Information Certificate Information

    Note: Please test with some users and make sure users are able to navigate to Fannie Mae federated SSO page to launch other applications.

How to Reactivate an Old Fannie Mae Certificate

Note: Please note that you will be able to reactivate the old certificate should you encounter issues, as long as the old certificate has been configured on your end and remains valid.

  1. To reactivate an old certificate, click the Reactivate button. Reactivate Certificate
  2. Please make sure the certificate is configured in your system. Click the “I have configured the certificate” check box and then click Continue to Reactivate button. Certificate Configured
  3. Confirm that you wish to reactivate the old certificate by clicking on the Reactivate Certificate button. This will deactivate the current certificate. Deactivate the current certificate
  4. Your old certificate has now been reactivated. Old certificate now reactivated

How to Set Up a New Customer Certificate

This section explains how to set up a new Customer Certificate.

  1. Launch the Federation Portal application from Fannie Mae federated portal page. Federated Certificate Management

    Note: If you are an IDP Administrator and not able to see Certificate Management tile, please reach out to your Corporate Administrator to add the FEDSSO_Federation_IDP_Admin role. If you need the read only role, please reach out to your Corporate Administrator to add the FEDSSO_Federation_ReadOnly role.

  2. From the Certificate Manager page, click on the “Your Certificates” tab. Your Certificates

    Note: In Overview tab, you will see any Certificates that are expiring soon, and you can click View Your Certificates link to specifically select that certificate update.

  3. To add a new certificate, click Add New Certificate. Add New Certificate
  4. Click the applicable button to either Upload File or Copy / Paste the new certificate. Upload File, copy, paste
  5. If you select Upload File: drag or select file after the certificate has been configured in your system. Click Select File. Upload Customer Certificate
  6. Select the certificate that you want to upload and click Open. Select Certificate
  7. Make sure the file name is correct and click Upload. Complete Customer Certificate Upload
  8. You are now ready to activate the certificate. Click Activate. Activate Certificate
  9. You will see a pop-up message confirming the certificate was successfully activated. Certificate successfully activated
  10. If you select Copy / Paste: Copy and paste your certificate after the certificate has been configured in your system. Copy and paste
  11. After pasting a copy into the box, click Activate New Certificate button. Activate New Certificate button
  12. After the new certificate is activated, your certificate status will show as Active and Primary on the page. Click the View More link to learn more about the certificate. Certificate status
    1. Once your Primary certificate has been uploaded, your previous Primary certificate will be listed as Secondary. Secondary certificate
  13. To delete a certificate that is not Primary, click on the View More button to show the Delete button and click on it. Delete certificate
  14. A delete confirmation will appear. Make sure it references the correct certificate you want to delete and click Confirm Delete button. Delete confirmation
    1. You will see a pop-up message confirming the certificate was successfully deleted. Successfully deleted certificate