KB Article #180303
Axway products using Passport 4.6 for certificate renewal 2019
Problem
The default Passport SSO CA certificate (CN=PassPort SSO CA) will expire on August 9th 2019 at 15:15:00 CEST
The default PassPort CA certificate (CN=PassPortCA) will expire on November 28th 2019 at 11:35:37 CET
Resolution
This article centralizes the procedures to renew the above default certificates in each Product relying on PassPort for SSO or SSL.
Note that:
- If the Product you are using does not rely on PassPort for SSO or SSL then you are not impacted by the expiration of these default certificates.
- If you are already using your own certificates for SSL or SSO (recommended) then you are not impacted by the expiration of these default certificates.
To generate and implement custom certificates in PassPort please refer to KB 180293.
To renew the default sample certificates in PassPort please refer to KB 178204.
The following articles are clarifying the manual procedures that can be done in Products that are relying on PassPort for SSO or SSL.
Products using default Tomcat certificate will also be impacted and the same procedures should be followed.
Product | Steps to renew certificates | Use SSO. Impact 9th of August | Use SSL. Impact 28th of November. |
AIS products (Interplay, Designer, Datastore...) | KB 180329 | Yes | Yes |
B2Bi | KB 180445 KB 180447 | No | Yes |
Composer | KB 180323 | Yes | Yes |
EBICS Gateway | KB 180327 | No | Yes |
Electronic Signature | KB 180325 | Yes | Yes |
Gateway Interchange | KB 180445 | No | Yes |
Gateway (XFB) | KB 180319 | No | Yes |
Integrator | KB 180447 | Yes | Yes |
Secure Relay | KB 180317 | No | Yes |
Sentinel | KB 180315 | Yes | Yes |
Transfer CFT | KB_180387 | No | Yes |
Trusted File | KB 180321 | No | Yes |
Central Governance | KB_180351 KB_180349 | Yes | Yes |
Note: This article is related to PassPort 4.6 and it isn't linked to the Access and Security node within CG.