Google Classroom Expired or Malformed Certificate

Google Apps have expiration dates on their associated certificates.  Duplicate or incomplete certificates can also generate a Malformed Certificate error.  Expired and malformed certificates must be renewed by the Google admin so the app can once again be accessed.

As the Google Super Admin, go to
Click Apps from the admin menu on the left and choose Web and Mobile Apps.

In the list, click Sadlier Connect and under "Service Provider Details" check the expiration date.  You can also make sure the ACS URL and Entity ID are correct.

If the expiration date is passed due, click the expand icon in the upper right hand corner. 

Click Manage Certificates and add a new certificate. Once created, click the trash can to remove the expired certificate.
Return to Apps on the admin menu and click Web and Mobile Apps.  Choose Sadlier Connect.  
Under User Access, make sure it is "On for Everyone".
Expand Service Provider Details and under Certificate, choose the new Certificate.

Return to the admin menu and click Security -> Access and Data Controls and then click API Controls.

Choose Manage Third Party Apps

Sadlier Connect should be marked as trusted.  If it's not, click "change access" by hovering over the row.

Select Trusted and Click Change.

Download the IDP and Json files
Once the certificate has been updated, go to Apps and Web and Mobile apps and choose Sadlier Connect from the list.  Click "Download Metadata" on this page.  Follow the instructions to download the file to your computer.

Go to
Choose Credentials from the menu.
    Under OAuth 2.0 Client IDs, click the download icon.

Upload the new IDP and Json files

Log in to with your Sadlier Admin Account.Click the Sadlier Settings Icon in the top right corner and select Manage Google Classroom.

On the Manage Google Classroom window, click Choose File for Upload IDP Metadata XML File. Upload the file you downloaded named GoogleIDPMetadata by default.

Click Choose File on the right for Upload Client Secret Json File. Upload the JSON file you downloaded.   The file name has client_secret in the name.

Click Save and log out.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.