As communicated by Logius from January 1, 2021, your current public PKIoverheid services server certificate will no longer allow you to communicate with Digipoort. The cause of this unplanned and hasty replacement is a recently discovered security issue in a number of globally issued certificates. Some of the certificates of PKIoverheid, part of Logius, have also been affected by this problem. By order of the CA / Browser Forum, which supervises the correct use of public certificates, the affected certificates must be replaced as soon as possible. Logius has drawn up an action plan for this and put it into operation. Part of the action plan is that from now on a private certificate will be used for communication with Digipoort. Your certificate supplier (Digidentity, KPN or QuoVadis) will contact you for the replacement. They may have already done this.
When you have received the private certificate from your certificate provider you have to import it in your companies. Also the root certificate and intermediate certificates needs to be installed.
Important: You can already perform the steps below. It is also important that you update to product update 419SP15, 420SP8 or 421SP2 in January 2021. These product updates will be available at the beginning of January. Keep an eye on the customer portal for more information about the availability of this product updates.
When you have received the private certificate from your certificate provider you have to import it in your companies. This has to be done in all companies that are used to send the declarations.
Besides importing the private certificate in the companies, you also have to install the root certificate and intermediate certificates. You have to install all certificates on all the machines that are used to send the declarations.