フィードバックを送信
legacy-knowledge-base
公開されました Sep. 10, 2025

SAML Certificate Deleted After Restarting Liferay DXP on Kubernetes

written-by

Kartik Singh

How To articles are not official guidelines or officially supported documentation. They are community-contributed content and may not always reflect the latest updates to Liferay DXP. We welcome your feedback to improve How To articles!

While we make every effort to ensure this Knowledge Base is accurate, it may not always reflect the most recent updates or official guidelines.We appreciate your understanding and encourage you to reach out with any feedback or concerns.

legacy-article

learn-legacy-article-disclaimer-text

Issue

  • Configured SAML in Liferay.
  • The SAML certificates are deleted when the Kubernetes pod (Liferay server) is restarted.

Environment

  • DXP 2023.Q4.0

Resolution

  • The SAML certificate is stored at /opt/liferay/data/. In Kubernetes deployments, this directory must be part of a persistent volume to ensure the certificate and other critical data are retained across pod restarts.

  • If this path is not mapped to a persistent volume, or if only an alternative path (such as /opt/liferay/data/document_library) is configured, the SAML certificate may be lost when the Kubernetes pod is restarted. It is important to verify that it /opt/liferay/data/ is correctly included in your Kubernetes volume mounts.

  • Additionally, there may be cases where the certificate is temporarily stored in memory and not immediately written to disk. This is more likely if the pod is restarted shortly after SAML configuration. To avoid data loss, ensure the certificate is properly saved before performing a restart.

Additional Information

  • For more insights into how Kubernetes manages storage and persistence, refer to the Kubernetes volumes documentation:

 

 

did-this-article-resolve-your-issue
legacy-knowledge-base
did-this-article-resolve-your-issue