Acoustic provides SSL encryption services on many API endpoints and web pages. Generally, this has no impact on customer use of Acoustic services. However, in some cases, customers and third-party integrations may pin SSL certificates for increased security. If your company pins our certificates, be aware that SSL certificate best practices dictate that Acoustic generates and deploys new SSL certificates yearly.
If your company or your integration pins our SSL certificates, you will need to download our new certificates and update them on your server. We provide our public root, intermediate, and named certificates below for your convenience.
All certificate updates of this nature will have a corresponding Status Page maintenance scheduled. Your team should sign up for Status Page notifications so that your team will be notified of future SSL certificate updates.
On Monday, October 23, 2023, at 7PM EDT, the certificate for the *.goacoustic.com domain will be replaced with the updated certificate.
Who does this change impact?
Most Acoustic customers will not need to take any action.
Customers who store a copy of our certificate for validation purposes when using Acoustic Campaign (via the user interface, API, or SFTP) will need to have their IT teams install the new certificate to ensure uninterrupted access to the platform. Customers accessing the Acoustic Campaign UI through a browser do not need to make any changes because browsers will pick up new certificates automatically.
Important: If your Acoustic Campaign is integrated with HCL Campaign, additional action may be required within HCL Campaign to ensure the correct certificates are installed to enable the integration to work seamlessly. Please reach out to HCL support for any additional assistance.
What should I do now?
Since client-side certificate validation typically occurs outside Acoustic's IT infrastructure, it is not possible for Acoustic Campaign to determine which security protocols are enforced by each organization that accesses Acoustic Campaign. If there are concerns regarding which changes are necessary in your organization, we encourage you to reach out to your IT team.
We encourage checking with your IT team to determine if your organization validates Acoustic certificates each time Acoustic Campaign is accessed. Acoustic Support cannot determine customer access requirements, though we would be happy to provide general guidance to make any required preparations for this change.
If you would like to obtain a copy of the new certificate, you can download the updated certificate below.
If you have any additional questions, our support team is here to help.