Overview

The expiring PrinPay SSL Certificate requires replacement.

What’s the deal?

To keep your business and customer data safe, CardConnect is making an update to one of its security protocols. This protocol requires the update of an expiring SSL certificate, called the PrinPay certificate. That means you’ll need to ensure you're using the updated SSL certificate, called the CardConnect certificate, before June 11, 2018.

What’s an SSL certificate?

An SSL certificate is a data file that protects the communication between a website and its users by verifying and encrypting information so that sensitive data isn’t intercepted by any unintended parties.

To show you an example of a valid certificate, you may have seen a reference to these certificates within a browser, if you’ve clicked the padlock icon (or similar image) in the search/address bar (which indicates it’s a secure connection).

How does this impact me?

Some of the businesses we work with are still operating on the old PrinPay certificate and need to be updated to the CardConnect certificate. So we will need to make sure you are using the correct certificate. We promise, it’s simpler than it may sound! Based on the CardConnect solutions you’re using to accept your customers’ payments, like the CardPointe Terminal, we’ve provided instructions for successfully making the update.

You must make this update before June 11, 2018.

If you’re using a Bolt P2PE terminal or PANpad device, you will not be required to make this update.

Required Actions

View the instructions below that correspond with the CardConnect solution(s) you use to accept credit card payments from customers.

Terminal Users

CardPointe Terminal (Retail + Restaurant)

If you’re a CardPointe Terminal user, you are required to replace the PrinPay certificate with the CardConnect certificate. To do this, it’s very simple — please follow the below steps.

1. Settle your terminal for transactions accepted since your last batch settlement

2. Press [6] to make sure you've batched out your transactions for the day

3. Press [.,#*]

4. Press [4] for Maintenance

5. Press [1] for Download

6. Press [2] to begin the download

7. Your terminal will automatically reboot and possibly print the status of the update

8. When complete, your terminal will return to the CardPointe screen saver

Bolt P2PE Terminals

There is no security update required for Bolt P2PE terminals.

PANpad Terminals

There is no security update required for PANpad terminals.

Tokenizer Users

Web Tokenizer

Ensure that the Web Tokenizer URL is <sitename>.cardconnect.com and does not reference prinpay.com.

iFrame Tokenizer

Ensure that the iFrame Tokenizer URL within the cs.ini file uses <sitename>.cardconnect.com and does not reference prinpay.com.

Desktop Tokenizer, PanPadUp, or Direct Link Library (DLL)

  1. Confirm that you have updated to the latest version that supports TLS 1.2.
  2. Ensure that the URL within your cs.ini uses cardconnect.com and not prinpay.com
  3. Ensure that the domain and certificate are trusted.

API Users

Bolt API 

There is no impact as the Bolt API does not use the PrinPay certificate or domain.

CardSecure API

Within your API, you will need to confirm that the CardSecure URL is <sitename>.cardconnect.com and the certificate uses the cardconnect.com version.

Additional Support

If you still have questions about making this update, or run into any issues, please reach out to our support team directly at cardpointesupport@cardconnect.com or call 877.828.0720 > option 1 > option 1 > option 1.