ACTION REQUIRED: Upcoming certificate expiry for Data Upload Tool secure4.arcot.com

Tuesday, 24 October 15 minutes
Complete
Complete

The maintenance is now complete. Thanks for your patience.

Underway

The scheduled maintenance is now underway. We'll keep you updated on our progress.

Scheduled

The secure4.arcot.com URL certificate expires on 01 Nov 2023. To ensure the continued operation of Arcot’s Data Upload Tool (DUT) the following steps must be completed to trust the new certificate. These steps must be completed by 20 Oct 2023 to ensure service continuity after Arcot installs the renewed certificate at 0500 GMT on 24 Oct 2023. The root and intermediate are retained to minimize the need of any action and also this notification can be ignored if DUT is not used on the customer side.

To obtain the certificates, follow the link to our knowledge base https://knowledge.broadcom.com/external/article?articleId=249939 and download the file listed 1694599481814__secure4_arcot_com_506591337.zip.

Next Steps : As an acknowledgement, please inform Broadcom CSM/PM or raise a support case that:

  1. You have received the renewed certificates properly (as sometimes they are corrupted)
  2. There is no action or the action required at your end with an ETA so we can line up downstream plans accordingly

We appreciate your confirmation adhering to the timelines to ensure there is no impact. If you have any questions, kindly get in touch with your designated CSM, PM or the Support team.

Implementation Specifics

Introduction

Arcot offers two options for uploading data; one is a DUT client server application (also referred to as DUCCMD or Data Upload Tool) and the other is DUT Web Services using the SOAP messaging protocol. ** Updated Certificates**

  • Leaf Certificate: secure4_arcot_com.crt
  • Intermediate Certificate: DigicertCA.crt
  • Root Certificate: TrustedRoot.crt

DUT Client server application

If the issuer is using Arcot’s DUT Client server application over SSL, then please complete the following changes on the server which has DUT Client installed. The paths to the certificates mentioned in the following steps assume that the DUT has been installed to the default path defined in the installation instructions. The path of installation is stored against an environment variable named ARCOT_HOME. Replace the root certificate in the ssl folder with the new root certificate. By default, the path will be: Windows: %ARCOT_HOME%\ssl UNIX: $ARCOT_HOME/ssl Open the upload.ini file in a text editor. By default, the path to the upload.ini file is: Windows: %ARCOT_HOME%\conf UNIX: $ARCOT_HOME/conf Update the value of serverCACert parameter in upload.ini to the absolute path of the root certificate.

DUT Web Service

Depending on the language (Java, C++) in which your in-house DUT client has been implemented, you may need to import the root and intermediate certificates to the trust store. These can vary between the system level or a custom trust store based upon the implementation.

If you have any questions, kindly create a case through the Broadcom Support Portal (https://support.broadcom.com/) .

Sincerely, Arcot Support Team

Began at:

Affected components
  • Arcot
    • Arcot for Issuers (AfI)
      • Secure4