Root Cause Analysis (RCA) Issued 23rd January 2018
SUMMARY:
At 09:44 on 23rd January our Infrastructure team were alerted of errors that a newly applied certificate was not trusted by browsers causing errors when authenticating to federated applications. Engineers immediately put a workaround in place which caused a degradation in performance for a subset of users while the full issue was resolved.
ROOT CAUSE:
IAM Cloud engineers had recently performed a certificate replacement and upgrade across all environments. A discrepancy was identified between the certificate issued by our certificate supplier, Go Daddy, and that which was stored on the revocation server hosted by Go Daddy.
RESOLUTION and MITIGATION
Re-keying and redistributing the certificate resolved the discrepancy between certificate issued and that hosted by Go Daddy. An additional step has been added to our certificate replacement process in order to ensure such issues are not possible in the future.
We thank you for your patience.
Kind Regards Victoria Hamblin CCO @IAM Cloud