search cancel

Certificate Management for mutual TLS client certificate to API endpoints - Arcot

book

Article ID: 250093

calendar_today

Updated On:

Products

CA Payment Security

Issue/Introduction

This article looks to outline and track the certificates used in the interaction(s) listed below so they can be trusted by entities allowing Arcot to connect using mutual TLS. 
Arcot utilizes certificates that are valid for one year to ensure the highest level of security for transaction and other flow interactions. The most current certificates used by the Arcot service will be available and update as required.

The interactions will include the following:

  • Outbound mTLS from Arcot to entity using the certificate <silo>ssl.arcot.com (trusted for outbound API call) 

Resolution

Arcot’s recommendation is to trust the Root and Intermediate certificates only. If you are required to also trust the Leaf certificate, please ensure that all three certificates are loaded into your Trust Store. To avoid impact to service, the existing certificates must not be removed until they have expired.

Attachments

1663254903998__tsysssl_arcot_com_219605874.zip get_app
1663254882713__secure7ssl_arcot_com_219605236.zip get_app
1663254870271__secure5ssl_arcot_com_239682384.zip get_app
1663254854977__secure4ssl_arcot_com_258026738.zip get_app
1663254842649__secure2ssl_arcot_com_239680374.zip get_app
1663254824921__mycardsecuressl_arcot_com_219605750.zip get_app