Summary:
In order to maintain our security standard, Basware has to renew the OFTP2 certificates associated with the Gateway service. The certificates for the test and production environment will need to be replaced.
Basware is using an Entrust root certificate which is by default trusted by most software providers.
Actions are required if your applications are connecting via OFTP2 to oftp.1stbp.de:6619 or test-oftp.basware-gw.com:6619.
It's crucial that the certificate renewal is executed by you at the same time as mentioned in the instructions below. Failing to replace the certificate at these intervals will prevent you from sending or receiving Business Documents via the Basware Network.
Instructions:
Test environment:
How: You can download the public key (and the complete certificate chain including CA and intermediate certificates) here.
When: The renewal of the certificates on the test environment will be performed on Wednesday 8th of March between 10:00 UTC and 11:00 UTC.
URL: test-oftp.basware-gw.com
SSID: O0013009183FIRSTBPTEST001
Production environment:
How: You can download the public key (and the complete certificate chain including CA and intermediate certificates) here.
When: The renewal of the certificates on the production environment will be performed on Wednesday 15th of March between 10:00 UTC and 11:00 UTC.
URL: oftp.1stbp.de
SSID: O0013009183FIRSTBP
Frequently asked questions:
Q: How do I know which certificate to download and use with the test or production connection?
A: The test and production connections use different certificates. Both certificates including the complete certificate chain can be found on this page.
Q: How do we know if we receive files from the Basware Network through this OFTP2 production channel?
A: Check if you have an OFTP2 connection setup with a SSID = O0013009183FIRSTBP and IP address = 34.249.131.251
Q: How do we know if we send files to the Basware Network through this OFTP2 production channel?
A: Check if you have an OFTP2 connection setup with a SSID = O0013009183FIRSTBP and URL = oftp.1stbp.de
Q: How do we know if we receive files from the Basware Network through this OFTP2 test channel?
A: Check if you have an OFTP2 connection setup with a SSID = O0013009183FIRSTBPTEST001 and IP address = 34.241.183.224
Q: How do we know if we send files to the Basware Network through this OFTP2 test channel?
A: Check if you have an OFTP2 connection setup with a SSID = O0013009183FIRSTBPTEST001 and URL = test-oftp.basware-gw.com
Q: What happens if we cannot replace the certificate at that time?
A: You will no longer be able to send files to Basware or you will no longer be able to receive files from Basware.
Q: What should we do if we replaced the test certificate on the 8th of March at the communicated time-frame but observe errors when trying to send or receive Business Documents?
A: Please try to send or receive documents again after 13:00 UTC for test. If you encounter issues afterwards, please contact our Customer Support.
Q: What should we do if we replaced the production certificate on the 15th of March at the communicated time-frame but observe errors when trying to send or receive Business Documents?
A: Please try to send or receive documents again after 13:00 UTC for production. If you encounter issues afterwards, please contact our Customer Support.
Q: Can we perform the certificate replacement before or after the announced time-frame?
A: No. The certificate has to be replaced at that announced date & time to avoid that you can no longer send or receive Business Documents.
Q: When will we be able to download the new certificates (and the certificate chain)?
A: The new certificates including the complete certificate chain can be found on this page.
Q: Where do I download the new certificates from?
A: The new certificates including the complete certificate chain can be found on this page.
In case of doubt or in case you have additional questions around this subject, please check the frequently asked questions available in our knowledge base or contact our Customer Support while referring to this communication. You can reach our Customer Support by creating a case via the contact form https://basware.service-now.com/bw