Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

SnapLogic regularly updates the TLS (SSL) certificates for UAT and Production servers (Global and EMEA) as existing certificates expire.

Note

Customers who need to manually update their trust store to trust the new certificate must do so immediately. 

If the TLS certificate used by SnapLogic Cloudplex expires, we will update the certificate after informing customers. However, if a broad-based impact (browser defects, for example) requires us to update a certificate immediately, we will update the certificate without prior notice. This is critical for customer environments that do not trust signed certificates and need a manual update of your applications to avoid communication issues with the SnapLogic control plane. 

We recommend you trust the CA-signed certificates, which will not need manual intervention when updated.

When do we update the certificates?

...

Expiry Date

Environment

Renewal Date (30 days before the expiration date)

Domains/Certificate Name

Estimate Update Time

Downtime

Download New TLS (SSL) Certificates

Production

 

snaplogic.io

30 minutes

None

snaplogio.zip

Production

 

Production

 

Production

...

Expiry Date

Environment

Renewal Date (30 days before the expiration date)

Domains/Certificate Name

Estimate Update Time

Downtime

Download New TLS (SSL) Certificates

Production

 

*.emea.snaplogic.io

30 minutes

None

emea.snaplogic.io.zip

Production

 

cdn.emea.snaplogic.com

30 minutes

None

cdn.emea.snaplogic.com.zip

Production

emea.snaplogic.com

30 minutes

None

emea.snaplogic.com.zip

...

Expiry Date

Environment

Renewal Date (30 days before the expiration date)

Domains/Certificate Name

Estimate Update Time

Downtime

Download New TLS (SSL) Certificates

Production

 

cdn.elastic.snaplogic.com

30 minutes

None

cdn.elastic.snaplogic.com.zip

Production

 

elastic.snaplogic.com

30 minutes

None

elastic.snaplogic.com.zip

Production

 

*.snaplogic.io

30 minutes

None

snaplogic.io.zip

What do you need to do?

While most operating systems and software platforms automatically trust new certificates, some of your integrations (such as custom applications or firewalls) that use SnapLogic's existing certificates may require directly trusting the server and intermediate certificates. We recommend configuring the client to trust the old and new certificates simultaneously to avoid interruption in accessing the SnapLogic platform.

If you use SnapLogic's certificates, download them (including a certificate chain) before the given dates and upload them to your client application. This will ensure that after the certificates are updated on the SnapLogic servers, your client-side certificate authentication upon logging into SnapLogic will continue working seamlessly. 

Note

To update these certificates for your client, you will need to follow the application-specific instructions. SnapLogic cannot help you since the procedure is application-specific. 

...