We are removing an unused Server SSL certificate for the endpoint sandbox.na.zuora.com which is expiring on 09/27/2020 4:59 PM PDT / 11:59 GMT.
Which endpoints does this impact?
Only an unused Server certificate will be removed. The endpoint will continue to function as expected with another existing and up to date certificate. Please work with your technology teams to determine what actions you must take to ensure you do not experience any disruption in Zuora services.
When will these changes take effect on the Zuora side?
These changes will occur on Sept 27th at 4pm PDT and will be immediate.
How will this change impact me?
No action is required for the correct certificate to be used automatically for SSL connections.
What actions must I take?
If you are pinning the previous Server certificate, you must complete the following actions before the scheduled maintenance to avoid any potential service disruption. Please work with your technology teams to determine what actions you must take to use the new certificate.
Contact Zuora Support to securely download the new Server certificate
Configure your systems for pinning the new certificate
*Note* Zuora does not recommend certificate pinning.
Why can’t Zuora support tell me if I’m impacted by this change?
We do not have access or knowledge of our customer’s systems, it is important that the customer assess whether their systems are impacted by this change.
Customer integration and truststore policy along with API integration common practice is the exclusive responsibility of the customer and their security & technology teams to maintain.
You are encouraged to register to the Zuora Community in order to receive the latest update on this topic.
Thank you for your support as it allows us to maintain the highest security standards at Zuora ensuring the safety of your data.
Zuora Support Services & Community