Upcoming certificate expiry for Data Upload Tool secure5.arcot.com

Tuesday, 23 April 5 minutes
Scheduled
Scheduled

The secure5.arcot.com URL certificate expires on 07 May 2024. To ensure the continued operation of Arcot’s Data Upload Tool (DUT) the following steps must be completed to trust the new certificate. These steps must be completed by 22 Apr 2024 to ensure service continuity after Arcot installs the renewed certificate at 0500 GMT on 23 Apr 2024. The root and intermediate are retained to minimize the need of any action and also this notification can be ignored if DUT is not used on the customer side.

To obtain the certificates, follow the link to our knowledge base https://knowledge.broadcom.com/external/article?articleId=249939 and download the file listed secure5_arcot_com_682785070.zip.

Once downloaded , please review the zip file containing the new certificate chain. The root and intermediate certificate remain unchanged and only a new leaf certificate has been issued. If you do not use the DUT tool or already have the root and/or intermediate there is no action required.

As an acknowledgement, please inform Broadcom CSM/PM or raise a support case that:

  1. You have received the renewed certificates properly (as sometimes they are corrupted)
  2. There is no action or the action required at your end with an ETA so we can line up downstream plans accordingly

We appreciate your confirmation adhering to the timelines to ensure there is no impact. If you have any questions, kindly get in touch with your designated CSM, PM or the Support team.

Implementation Specifics

Introduction

Arcot offers two options for uploading data; one is a DUT client server application (also referred to as DUCCMD or Data Upload Tool) and the other is DUT Web Services using the SOAP messaging protocol. ** Updated Certificates**

  • Leaf Certificate: secure5_arcot_com.crt
  • Intermediate Certificate: DigicertCA.crt
  • Root Certificate: TrustedRoot.crt

DUT Client server application

If the issuer is using Arcot’s DUT Client server application over SSL, then please complete the following changes on the server which has DUT Client installed. The paths to the certificates mentioned in the following steps assume that the DUT has been installed to the default path defined in the installation instructions. The path of installation is stored against an environment variable named ARCOT_HOME. Replace the root certificate in the ssl folder with the new root certificate. By default, the path will be: Windows: %ARCOT_HOME%\ssl UNIX: $ARCOT_HOME/ssl Open the upload.ini file in a text editor. By default, the path to the upload.ini file is: Windows: %ARCOT_HOME%\conf UNIX: $ARCOT_HOME/conf Update the value of serverCACert parameter in upload.ini to the absolute path of the root certificate.

DUT Web Service

Depending on the language (Java, C++) in which your in-house DUT client has been implemented, you may need to import the root and intermediate certificates to the trust store. These can vary between the system level or a custom trust store based upon the implementation.

If you have any questions, kindly create a case through the Broadcom Support Portal (https://support.broadcom.com/) .

Sincerely, Arcot Support Team

Affected components
  • Arcot
    • Arcot for Issuers (AfI)
      • Secure5