When to get certificates

You must generate or obtain new certificates when:

  • You know or suspect a certificate has been compromised.
  • You need to replace a certificate that is about to expire.
  • You want to change your encryption key at planned intervals just as you would change a password.

For procedures for handling new certificates, see Set up certificates for a community or Import certificates for partners.

If possible, perform certificate updates when your server is not processing outbound documents. By observing this precaution you can avoid documents being rejected by partners.

If you generate a new self-signed certificate because the old one has expired, became defective or corrupted or cannot be used for any other reason, you should export your certificate to a file and distribute it to your partners by a secure means, which includes in-person, standard mail or private delivery service.

Related Links