Before you begin, you need generate encryption certificates for encrypting the SAML connection.
You can use the Bash script from the
mattermost/docsrepository on GitHub, or any other suitable method.
Save the two files that are generated. They are the private key and the public key. In the System Console, they are referred to as the Service Provider Private Key and the Service Provider Public Certificate respectively.