Skip to main content
  • Global

Certificates and Security Support

Unable to connect to Experian systems via a web browser? Want to know if your system is compatible?

If you have an integrated system (e.g. Transact, Hunter, Cems, Fraudnet) and have a locally stored Certificate Key Chain, you may need to download and install a new SHA-256 Certificate Key Chain into your local network device. You can download the new SHA-256 certificate Key Chains below. There are four parts to the Certificate key chain which should be stored in the key store(s) of all server(s) you use to call Experian URL’s with. Download here.

  • Entrust Root Certification Authority.cer
  • Entrust Root Certification Authority - G2.cer
  • Entrust Certificate Authority L1K (Non-Ev).cer
  • Entrust Certification Authority - L1M.cer

We recommend you install all four parts of the SHA-256 Certificate for completeness and future compatibility protection.

You can find detailed installation instructions here:https://www.entrust.com/get-support/ssl-certificate-support/installation-help/

Java Keytool: http://www.entrust.net/knowledge-base/technote.cfm?tn=8853

OpenSSL: http://www.entrust.net/knowledge-base/technote.cfm?tn=8850

Microsoft Server 2003: http://www.entrust.net/knowledge-base/technote.cfm?tn=8849

Microsoft Server 2008: http://www.entrust.net/knowledge-base/technote.cfm?tn=8848

Citrix Netscaler: http://www.entrust.net/knowledge-base/technote.cfm?tn=8895

F5 Big IP: http://www.entrust.net/knowledge-base/technote.cfm?tn=8892

 

Please note - you can upgrade your live production environment at any time. We recommend you install these SHA-256 Certificate Key Chains before February 7th. However, please don’t delete your existing SHA-1 Certificate Key Chains until the upgrade.

If you have access to our UAT environment we recommend you test your systems.

 

Downloads

 

All client systems that make a call to an Experian URL should have the four Entrust certificates listed below installed. This is the complete security chain required to verify that the SSL certificate Experian sends back during the initial connection request is valid and publically trusted by Entrust.

These four certificates should be installed in the key store(s) of all server(s) you use to call Experian URL’s.

 

  • Entrust Root Certification Authority.cer
  • Entrust Root Certification Authority - G2.cer
  • Entrust Certificate Authority L1K (Non-Ev).cer
  • Entrust Certification Authority - L1M.cer