Oct 9, 2024 ā CPS update: Event Logger restored
This release restores the Event Logger system function in the CPS API. The core functionality of the event logger remains the same. There should be no change to the system's behavior, as provided in early 2024 and beyond.
Sep 18, 2024 ā CPS update
This release addresses a production bug that resulted in an incorrect live domain acknowledgement for renewal certificates that don't support SANs and didn't modify SANs.
Sep 5, 2024 ā CPS update for creating certificates
When creating a new certificate in the CPS application, context for contracts under all accessible accounts is now available, regardless of which account is currently logged in to Control Center. This enhancement lets you view and maintain enrollments across contracts under related accounts.
Aug 21, 2024 ā CPS certificate history retrieval update
The behavior in the CPS around certificate history and certificate activity data is changing as of October 7th, 2024. For enrollments with six certificates or fewer, the response yields up to twelve years of data per certificate. If there are more than six certificates in the enrollment, the response shows a truncated set. To view all changes or certificates, use the includeAll=true
query parameter in the request. For more information, see the documentation.
Jul 9, 2024 ā CPS live domain acknowledgment changes
Updates include:
Jun 6, 2024 ā DV SAN and Default DV trust chain changes
The cross-sign from IdenTrustās DST Root CA X3 to the Letās Encrypt ISRG Root X1 certificate will expire in September 2024. To prepare for this expiration, Letās Encrypt has announced their plans to discontinue use of the cross-sign, and issue all certificates exclusively using their intermediate certificates signed by the ISRG Root X1 certificate. At the same time, Letās Encrypt will be introducing new intermediate certificates for both ECDSA and RSA issuance.
May 3, 2024 ā New CPS API endpoint for all active certificates
This endpoint can be used to monitor your active certificates. With the List active certificates operation, you can view all active certificates on your contract. The request's response object rolls up all of your active certificate's enrollments into a single response. New enrollments, with no active certificates, display null or empty fields as appropriate.
Mar 28, 2024 ā Federal Information Processing Standards (FIPS 140-2) for CPS certificates
The CPS user interface and API now give you the option to enable delivery of your client-to-edge traffic using FedRAMP and FIPS-140-2 compliant cryptographic functions. When you enable FIPS mode for your certificates, the Akamai network will present only the FIPS 140-2 validated ciphers within the selected cipher profile to connecting clients. Public and private key pair generation in CPS , after March 1, 2024, always uses FIPS 140-2 validated functions.
Nov 7, 2023 ā CPS API Rate Limiting
To help provide ideal performance, the Certificate Provisioning System (CPS) API is now subject to request rate limiting. The API returns a response with an HTTP status code of 429 if these rate limits are exceeded. See Rate limiting for more information.
Oct 17, 2023 ā DigiCert site seal replaces Norton site seal
On Oct 17, 2023 DigiCert will automatically replace the Norton site seal image with the DigiCert site seal image wherever it appears on websites with Akamai-managed Organization-validated (OV) or Extended-validated (EV) certificates. This change is automatic and no action is required.