• Servicios
• TCS
• Noticias

Changes to Certificate Status

In the upcoming SCM 22.12 release expected on December 17th 2022, Sectigo will be making the following changes to certificate Status and Managed fields.

SSL Certificates

The External state will no longer be used to make SSL consistent with other certificate types and reduce confusion. Instead all Sectigo Public ACME or discovered certificates will appear as Issued if they are still valid.

Upcoming Changes Announcement
SSL Certificate Details
The usage of the External state for both Sectigo Public ACME and discovered certificates was inconsistent with other certificate types and caused some confusion.
Sectigo Public ACME SSL Certificates
There has been inconsistency in ACME certificates with Sectigo Public ACME certificates using the External state, while Universal ACME used the Issued state. This inconsistency caused some confusion since filters, reports or dashboard graphs didn't treat all ACME certificates the same way.


All previously issued Sectigo Public ACME certificates in the External state will be switched to Issued state. The Requested Via field will continue to show ACME.
Discovered SSL Certificates
These certificates have always used External state while the certificate was valid, or Revoked/Expired as appropriate. However discovered certificates of other types never used an External state.


All previously discovered SSL certificates in the External state will be switched to the Issued state. The Requested Via field will continue to show Discovery.
REST API Impacts
Back
×

Upcoming Changes Announcement
SSL Certificate REST API Impacts
All API responses that include a status field will no longer include External.


Listing SSL Certificates API included a status filter with a documented string of Unmanaged. This filter will now return an empty response.


SSL Certificates Report API included a certifcateStatus filter with a documented value of 11 for External. This filter will now return an empty response.
Back
×

Client\Code Signing\Device Certificates

The Downloaded state will no longer be used to make these certificate types consistent with SSL. Instead all certificates will appear as Issued if they are still valid.

All Certificate Types

The Managed field is being removed from the UI. All certificates shown in the main SCM UI are considered managed and will be included in notifications.

Upcoming Changes Announcement
Client\Code Signing\Device Certificate Details
The usage of the Downloaded state for these certificate types was inconsistent with SSL. These certificate types are commonly used with SCEP or self-enrollment workflows. In these cases the certificate is almost immediately downloaded. Using both Issued and Downloaded states to represent valid certificates caused some confusion since filters, etc couldn't easily find all certificates.


All previously downloaded certificates will be switched to the Issued state. The Downloaded field will continue to show the timestamp of the latest download. Manual downloads will be recorded as always in the certificate's audits.
REST API Impacts
Back
×

Upcoming Changes Announcement
Client\Device Certificate REST API Impacts
All API responses that include a state or status field will no longer include Downloaded.


Listing Certificates API included a state/status filter with a documented string of downloaded. This filter will now return certificates that have a value in the Downloaded field. It will not consider the certificate status. This value will documented as deprecated and will be removed in the future.


Certificates Report APIs included a certificateStatus filter with documented value of 10 for downloaded. This filter will now return certificates that have a value in the Downloaded field. It will not consider the certificate status. This value will documented as deprecated and will be removed in the future.
Back
×