Authorize.Net will upgrade and replace Production certificates for API services starting May 26, 2015. Technical details are provided for solutions connecting to Authorize.Net APIs that may need updates.
To see the full announcement, please see this blog post.
04-24-2015 01:05 PM
We updated to that sdk-php cert.pem last week and everything was fine until about 00:30:00 Central time this morning. It only started working again when I moved back to the old cert.pem ????
05-28-2015 08:13 AM
We installed the latest PEM file from the SDK yesterday (https://github.com/AuthorizeNet/sdk-php/blob/master/lib/ssl/cert.pem)
However, only the AuthorizeNetCIM requests were able to connect using the new PEM.
Our AuthorizeNetAIM requests, however were not able to connect using the new PEM.
We finally had to merge our old PEM file together with the new PEM file to have both old and new sets of keys in the same file. This was the only way to have BOTH NetAIM and NetCIM requests work.
Why would we have to do this if supposedly only the new PEM file is required?
05-28-2015 10:15 AM
I partially answered my own question:
NetAIM uses this host: https://secure.authorize.net/gateway/transact.dll
NetCIM uses this host: https://api.authorize.net/xml/v1/request.api
Apparently the new keys only affected one of those hosts - which is why I needed to have a merged PEM file to use both solutions.
Was this communicated anywhere by Authorize.NET team?
05-28-2015 10:36 AM
I didn't see it, but it appears to be why the old cert still works because we only use AIM.
05-28-2015 10:42 AM
We have updated the pem file in our PHP SDK to support the recent certificate change. The newest version of the pem file can be downloaded from our stable PHP SDK branch at: https://github.com/AuthorizeNet/sdk-php/blob/master/lib/ssl/cert.pem
Only the certificate for https://secure.authorize.net was updated this week. We will be continuing to move forward with other certificate updates in the near future to upgrade them all to SHA-256.
05-28-2015 11:34 AM
Having issues with this upgrade, still getting connection issues (we are using AIM method), basically won't connect to secure.authorize.net to charge the cc. I installed the Entrust Root Certificate and Internmediate Certifcate, but not sure if I did it right. Any advice or other things to look for?
Using custom shopping cart and ColdFusion script to connect via AIM
05-28-2015 01:55 PM
Thanks Trevor,
Given what you've said, am I correct in concluding that as of today your official SDK only works for part of your services?
Why doesn't your SDK contain all active keys so that you have a 100% working SDK?
Since your SDK does not provide support for multiple PEM files for individual services, and you don't provide multiple active PEM files in your official SDK - I predict that this undocumented feature, and lack of an official copy of working keys for these others services will create confusion for new developers.
When is the conversion for the remaining services expected? How much warning will be given, and will the notification be published under the main announcements? Is there an active mailing list for these kinds of notifications, or will developers need to watch the forum to be informed of these types of updates?
Thanks.
Michael
05-28-2015 02:03 PM
I am also using custom Coldfusion shopping cart using AIM. I have(i'm pretty sure) installed all the certificates on the server. (MS Server 2008 R2/Coldfusion 9). Still cannot connect. Even tried a none secure post(http instead of https) and still won't connect. Anyone have any suggestions?
05-28-2015 03:21 PM
I too have a custom Coldfusion cart using AIM and we cannot get the transactions through. I have posted another thread a few minutes ago. This is extremely frustrating.
We have imported the 4 certificats into the trusted stores for both the user and computer account on Windows 2008 R2. Has anyone gone through this before?
05-28-2015 03:47 PM - edited 05-28-2015 03:47 PM
@Lilith: Can you give me the IP address ranges so I can add them to a white list (or refer me to a place where I can find this information)? Unfortunately our firewall only white lists IP addresses.
05-28-2015 03:58 PM