Certificates
Twilio SendGrid Single Sign-On is currently in beta. The following documentation and product interface may change as the product is improved.
Known limitations during beta
Twilio SendGrid SSO does not currently support granting an SSO user access to more than one Subuser without granting the SSO user administrator access at the top level of your Twilio SendGrid account.
The Single Sign-On APIs allow you to manage your SAML 2.0 SSO configurations. You can also work with your SSO integrations using the SSO section of the Twilio SendGrid App.
The Certificates API allows you to create, modify, and delete SSO certificates. A SAML certificate allows your IdP and Twilio SendGrid to verify requests are coming from one another using the public_certificate
and integration_id
parameters.
For more information about managing SSO Certificates, see the Twilio SendGrid SSO documentation.
Create an SSO Certificate
POST /v3/sso/certificates
Base url: https://api.sendgrid.com
This endpoint allows you to create an SSO certificate.
Request Body
This public certificate allows SendGrid to verify that SAML requests it receives are signed by an IdP that it recognizes.
Indicates if the certificate is enabled.
An ID that matches a certificate to a specific IdP integration. This is the id
returned by the "Get All SSO Integrations" endpoint.
{
"public_certificate": "<your x509 certificate>",
"enabled": false,
"integration_id": "b0b98502-9408-4b24-9e3d-31ed7cb15312"
}
Responses
This certificate is used by Twilio SendGrid to verify that SAML requests are coming from Okta. This is called the X509 certificate in the Twilio SendGrid UI.
A unique ID assigned to the certificate by SendGrid.
A unix timestamp (e.g., 1603915954) that indicates the time before which the certificate is not valid.
A unix timestamp (e.g., 1603915954) that indicates the time after which the certificate is no longer valid.
An ID that matches a certificate to a specific IdP integration.
{
"public_certificate": "<your x509 certificate>",
"id": 66138975,
"not_before": 1621289880,
"not_after": 1621289880,
"intergration_id": "b0b98502-9408-4b24-9e3d-31ed7cb15312"
}
Need some help?
We all do sometimes; code is hard. Get help now from our support team, or lean on the wisdom of the crowd browsing the SendGrid tag on Stack Overflow.