Caterpillar API Hosts Certificates Update
On September 1, 2023, the TLS certificate for API runtime traffic will be updated in all environments EXCEPT production. On October 1, 2023, the production environment will be updated. See below for the full list of impacted hosts. No outage or disruption to traffic is expected.
The new certificate's hierarchy is the same as the current certificate: Root = "DigiCert Global Root G2". Intermediate = "DigiCert Global G2 TLS RSA SHA256 2020 CA1". Typically, applications only save the "root" certificate into the app's truststore. If this is the case for your app, then no further action is required. As always, the "Root" certificate is available to download from DigiCert.
If your application has implemented "certificate pinning," then you must download and install the new “leaf” certificates and save them in your app's truststore. Make sure to load the certificates in addition to the already installed certificates. Do not replace the already installed certificates. After downloading these files, rename them and remove the ".txt" extension.
Note: Certificate pinning is not recommended due to reasons mentioned here.
Non-production host names using api-dev.cat.com certificate:
- api-dev.cat.com
- services-dev.cat.com
- apidev.catdevservices.com
- api-qa.cat.com
- services-qa.cat.com
- apiqa.catdevservices.com
- api-int.cat.com
- services-int.cat.com
- api-stage.cat.com
- services-stg.cat.com
- apistage.catdevservices.com
- api-performance.cat.com
- services-perf.cat.com
- services-performance.cat.com
- apiperformance.catdevservices.com
Non-production host names using api.cat.com certificate:
- api-sandbox.cat.com
- services-sandbox.cat.com
- apisandbox.catdevservices.com
Production host names using api.cat.com certificate:
- api.cat.com
- services.cat.com
- api.catdevservices.com