You may receive an email notification from Mitek regarding expired certificate updates for their legacy hostnames.
As part of the notification, Mitek recommends updating legacy hostnames to a new hostname. For our Mitek Exchange component version 3, that would involve updating the Endpoint in the Mitek service connection.
Under no circumstances should that recommendation be followed. The Mitek component Groovy code contains dependencies requiring the Endpoint URL contain the string ://globalidentity.
.
If the Endpoint URL is updated, the Mitek component will cease to function, so it is critical that the Endpoint URL remain as https://globalidentity.us.sandbox.mitekcloud.com.
Future releases of the Mitek Exchange component beyond version 3 will allow use of the updated hostname as well as legacy hostnames. Until then, DO NOT update the Mitek service connection Endpoint value.
Please be advised that the SSL Certificates for legacy endpoints in sandbox (us-west-2) platform are expiring on this March 19, 2024.
Mitek will be replacing the SSL certificate for the deprecated legacy hostnames of the Sandbox US Mobile Verify API endpoints. These certificates are being replaced due to expiration dates approaching. The new certificates will have matching data and will be issued from the same Certificate Authority. They will however have new "Not Valid After" date, serial number, and fingerprint.
The Legacy Hostnames affected are:
Those legacy hostnames have been deprecated. These were replaced several years ago with a single hostname per platform:
We encourage all customers to switch to using the new name. There will be a time in the future where we will announce a retirement date on the Legacy names above. Changing this now gives you control over the timeline.
For the majority of our customers, no action is required. However, if your organization has added specific certificate fingerprint whitelisting, you will need to add this new certificate to your configuration. Mitek does not recommend that our customers whitelist certificates related to our endpoints as the certificates could change at any time without warning. Mitek’s public SSL certificates are now only issued with a 1-year validity duration. This will cause more frequent updates to these certificates.
We have attached the new public certificates to this message.
The Certificates will be updated on the evening of March 14th during the normal maintenance timeframe. There is no expected downtime for this change.