I should have mentioned we are using AD for authenitcation
These two articles walk you steps by steps on how to create the .key and which cert to use
Cert: A PEM-encoded x509 certificate file with a .crt extension
I have the certs and they are working in ssl The documentation states you can use the same certs but it works for ssl and not SAML. Thanks for answering.