Find the answer to your question
Advanced Search
Certificate Authority change from DigiCert to Sectigo
After the eBay public API endpoints migrated Certificate Authority from Digicert to Sectigo, all the connections that can’t trust Sectigo Issued certificates will be disconnected. Before the migration, point your test environment to our one or more sandbox environment:
Trading API: https://api.sandbox.ebay.com
Shopping API: https://open.api.sandbox.ebay.com
Finding API: https://svcs.sandbox.ebay.com
If you can successfully make an API call, your application(s) support Sectigo issued the Certificates.
If your request fails and your application supports making direct API calls from a browser (e.g., using REST), users may also be affected if they are using older browsers or legacy versions of software,
Please upgrade user browser and OS newer than below version or latest version or add
Apple:
- macOS Sierra 10.12.1 Public Beta 2
- iOS 10
Microsoft:
- Windows XP
- Windows Phone 7
Mozilla:
- Firefox 36
Google:
- Android 5.1
Opera:
- [Browser release in December 2012]
360 Browser:
- SE 10.1.1550.0 and Extreme browser 11.0.2031.0
If your request fails from API applications, check your logs to see why. if you see an error similar to one of the following shown below:
The PKIX path validation failed exception
javax.net.ssl.SSLHandshakeException:
sun.security.validator.ValidatorException:
PKIX path validation failed:
java.security.cert.CertPathValidatorException:
signature check failed
Please follow up with your application stack vendor documentation to update your application or system to include Sectigo Intermediate Certificate and Trusted Root Certificate in PEM form. This will help build the trust chain between Root and End Entity Certificate, hence we call them "chain certificates''
[Download] SHA-2 Root : USERTrust RSA Certification Authority
Some vendor resource on how to install CA Certificate