Guides

Client Certificate

Suggest Edits

Step 1. Create your certificate

Generate a certificate signing request (client certificate) from your API application/client system or a third-party tool and send it to TIS.
If the client system/tool doesn’t have the technical capability to generate a certificate signing request (CSR), use a third-party tool of your choice to generate a x509 private key and a certificate signing request for it.

TIS uses RSA-SHA algorithm for asymmetric encryption and digital signatures.

📘

The recommended key size is 3072

Optional : ZeroSSL chain certificate

If the client system is already trusting TIS domain, installing the ZeroSSL chain certificate may not be needed.

Install the ZeroSSL chain certificate in the API application at client system’s end . The ZeroSSL chain certificate can be found here https://support.tispayments.com/downloads/files/zerossl-chain-cer
Contact TIS Customer Service ([email protected]) or your dedicated Customer Success Manager in case you do not have access to this resource.

Optional: TIS customer CA certificate

If the client system is already trusting TIS domain, installing the TIS customer CA certificate may not be needed.

Install the TIS customer CA certificate (tis_customer_ca.cert.pem) in the API application at client system’s end. The TIS customer CA certificate can be found here https://support.tispayments.com/downloads/files/259-tis-customer-ca-cert-pem-2/download
Contact TIS Customer Service ([email protected]) or your dedicated Customer Success Manager in case you do not have access to this resource.

Step 2. Have your certificate signed

Send the certificate signing request (without the x509 private key) as a text file to your onboarding manager or email it to [email protected] to have it signed.

Step 3. Import your certificate into TIS

When your certificate is signed, you can import it into your TIS account. Make sure your File Format is PEM. Click on the Import button and follow the on-screen instructions.

1522

Certificates and Keys

Step 4. import your certificate to your server

Import the signed certificated onto the server that you are going to use for the HTTP communication to exchange data with TIS.

Updated about 1 year ago