12d Synergy requires certificates for secure transfer (HTTPS) when using Publishing, Web File Drops, Web App and when using custom user logins.
Certificates are synonymous with passports. They verify/establish the identity/trust of a public key(encryption method) to an entity (business, domain name, etc.) as verified by a third party (a Certificate Authority).
Without certificates, hackers/unauthorized personnel/attackers could easily compromise and take control of a company’s data residing in their IT infrastructure.
Certificate lifetimes are changing in the industry to improve security. This means that between now and 2029, the maximum life of a TLS/SSL certificate will be reduced by half each year.
For more details about the related industry changes, please see this forum.
Timeline | Certificate Validity |
|---|---|
15 March 2026 | Maximum validity drops to 200 days |
15 March 2027 | Maximum validity drops to 100 days |
15 March 2029 | Maximum validity drops to 47 days |
This is to improve security to ensure certificates are not stolen and used by malicious actors. However, this makes it very hard for people to manage them manually.
How is 12d Synergy handling this change?
This change does not impact 12d Synergy Cloud Customers. But if you are using custom authentication, SSO, or HTTPS for the web app, then you will need to renew your certificate more regularly to align with these industry changes. There are several mechanisms available to you to do this. The most notable ones are ACME and Microsoft Azure App Service Certificates.
There are automatic processes for this via ACME or Microsoft Azure App Service Certificates.
We recommend using ACME unless you are familiar with Microsoft Azure.