• Contact Us
• Account Login |
• Worldwide |

• Products & Services
  • Advanced
  • Global Payment Services
    • Credit & Debit Card Processing
    • International Payment Options
    • Electronic Check Processing
    • Managed Analytics
    • Managed Billing
    • Bill Me Later®
    • PayPal
    • Tax Calculation
    • Resource Center
  • Fraud Management
    • Decision Manager
    • Managed Risk Services
    • Payer Authentication
    • Verification & Compliance Services
    • Resource Center
  • Reporting & Reconciliation
    • Automated Payment Reconciliation
  • Payment Security
    • Payment Tokenization
    • Secure Acceptance
    • Secure ERP Payment
    • Account Updater
    • Resource Center
  • Professional Services
  • Small Business / Authorize.Net
• Industry Solutions
  • Airlines
  • Retail / Brand Direct
  • Media, Entertainment, Telecom
• Developers
• Resources
• Partners
• Support Center
  • Support Documentation
  • Support Tools
  • Implementation
  • Management
  • International Support
• Company
  • News & Events
  • Careers
  • Contact Us

Update Keys and Certificates

ECert Application

Use ECert to generate your private key and certificate for secure transaction processing. Click here to download the latest version of the ECert Application to replace the ECert application packaged with the client software.

Merchant Keys and Certificate

For security purposes, you must update your certificate and private key at least every 12 months. CyberSource sends notice 60 days before your keys expire, then sends regular notices until you update your keys. Please ensure that CyberSource has the most updated contact information on record for you account. Contact Customer Support to submit updated contact information.

Please review CyberSource instructions for updating your keys.

CyberSource Server Certificate CyberSource_SJC_US.crt

Right-Click the link below to obtain the most recent version of the CyberSource Server Certificate. This key is required for all transactions sent to the CyberSource Transaction Servers.

To install this Server Certificate:

1. Locate the currently installed CyberSource Certificate on all machines that sends transactions to CyberSource.
2. Rename the currently installed CyberSource Certificate to CyberSource_SJC_US.crt.bak
3. Place the newly acquired CyberSource Server Certificate in the same directory as the now renamed Server Certificate.
4. Follow the steps below in "How to Determine the expiration date of your merchant and/or CyberSource certificate" to ensure that you have the new CyberSource Server Certificate. The expiration date should display the year 2012.

How to Determine the expiration date of your merchant and/or CyberSource certificate

You can determine the expiration date of your merchant and/or CyberSource public key by performing the following:

For NT Systems -

• Using the file manager, find the file <merchant_id>.crt or CyberSource_SJC_US.crt
• Double-click to open the file.
• A window should appear with multiple tabs.
• Select the "General" Tab. Note: You will see a message under "Certificate Information" stating "This certificate cannot be verified due to a lack of information." This is a normal message; you can ignore this and proceed to the next step.
• Look for the Valid from/to row. A good certificate will read similar to "Valid from 01/06/2000 to 01/05/2002"
• If you have the expired certificate it will show the "valid to" date as 02/17/2000.

For Unix/Linux systems -

Find the <merchant_id>.crt or CyberSource_SJC_US.crt file.

> cd /opt/ics/keys

Execute the "strings" command against this file and grep for the unique character "Z".

> strings CyberSource_SJC_US.crt | grep Z

You should see something similar to the following data returned:

990217190941Z
000217190941Z0G1
^^^^^^
YYMMDD

Executing the "strings" command against a good public key file:

> strings CyberSource_SJC_US.crt | grep Z

You should see the following data returned:

000107024726Z
020106024726Z0G1
^^^^^^
YYMMDD