On this Page
This account is used by Snaps in the Anaplan Snap Pack.
Anaplan CA Certificates MigrationAnaplan is extending the deadline to migrate to Certificate Authority (CA) certificates to February 26, 2020 when Anaplan will update their production certificate. This will replace validation for Anaplan certificates, wherein existing Anaplan certificates will cease to work once this certificate is issued. This new certificate is to be used for existing clients on the legacy certificate authentication. This certificate will NOT work on clients using the CA certificates. Anaplan recommends that customers update their integration clients to a version that supports Certificate Authentication 2.0 that uses a CA certificate. What are we doing?We have upgraded our Anaplan Snap Pack to v2.0 APIs as of SanpLogic Release 4.15 (November, 2018). The upgraded Anaplan Snap Pack only supports v2.0 APIs with basic and certificate authority authentication, and does NOT support the Anaplan-generated certificate option. In basic authentication, the username and password is sent to the Anaplan Server, over SSL. Certificate authority authentication requires a certificate and a private key to verify the user to the Anaplan Server. To support this, Certificate file and Certificate der properties are replaced with External certificate file, External certificate contents, and External private key properties that require a CA-supplied certificate to authenticate. The Anaplan certificate is stored locally and on the Anaplan server. The private key is never sent to the Anaplan server and is used to generate a one-time passcode (nonce) that is sent along with the certificate. The public key portion of the certificate is used to verify the contents of the nonce and validate the user. We recommend you to plan ahead and either switch to basic authentication or have the certificate authority authentication ready by February 26, 2020. Contact support@snaplogic.com if you face any issues while migrating to basic or CA authentication. How can you migrate to CA-signed certificates?PrerequisitesPurchase and implement a certificate chain that meets the following requirements:
Uploading the certificate
Action required by youDepending on the authentication method you use, perform the steps mentioned in the following table.
|
You can create an account from Designer or Manager. In Designer, when working on pipelines, every Snap that needs an account prompts you to create a new account or use an existing account. The accounts can be created in or used from:
In Manager, you can navigate to the required folder and create an account in it (see Accounts). To create an Anaplan account:
Label | Required. User provided label for the account instance. | |||
---|---|---|---|---|
Username | Required. The name for this account. This property is mandatory for basic authentication. Default value: None | |||
Password | Required. The password for the account. This property is mandatory for basic authentication. Default value: None | |||
Anaplan hostname | Required. The hostname for Anaplan REST API service. Example: https://api.anaplan.com Default value: https://api.anaplan.com | |||
External certificate file | Link of the certificate file that you have uploaded. You can use a certificate file instead of a username/password to simplify login. Click to select the file and upload it into SnapLogic. Specifying External certificate contents is more secure than specifying the External certificate file because the certificate content is encrypted; whereas an uploaded certificate file is not encrypted. Default value: None | |||
External certificate contents | Specifies the contents of your certificate file. The certificate typically has the following format:
Specifying External certificate contents is more secure than specifying the External certificate file because the certificate content is encrypted; whereas an uploaded certificate file is not encrypted. Default value: None | |||
External private key | Specifies the plain-text version of your private key.
Default value: None |
Standard Encryption | If you are using Standard Encryption, the High sensitivity settings under Enhanced Encryption are followed. | |
---|---|---|
Enhanced Encryption | If you have the Enhanced Account Encryption feature, the following describes which fields are encrypted for each sensitivity level selected per each account. Account:
|
If a validation error occurs after you enter the certificate and private key in Accounts, verify the following:
-----BEGIN CERTIFICATE-----
and end with -----END CERTIFICATE-----.
-----BEGIN RSA PRIVATE KEY-----
and end with -----END RSA PRIVATE KEY-----.