Clients use TLS Certificate Authority (CA) certificates to validate responses from the SnapLogic Platform. SnapLogic periodically updates certificates for the control plane. To avoid issues, configure trust stores with the latest TLS certificates. These certificates enable secure communication with the control plane and with Cloudplexes.

Groundplex nodes have self-signed CA certificates. You should configure clients that call Groundplex URLs to accept the self-signed certificates. For Groundplex nodes that receive requests from sources other than the control plane, we recommend use of a load balancer. With respect to TLS certificates:

• If you configure the load balancer with your certificate and it terminates the TLS (SSL) connections, you don't have to do anything to configure Groundplex nodes.
• If you can't configure the certificate and connection termination on the load balancer, you must do one of the following:
  • Install your own CA certificate on the Groundplex nodes.
  • Configure HTTP clients to accept all certificates.
  • Download the CA certificate from your SnapLogic environment (Org) and add the certificate to all client trust stores. To download the certificate, go to the details of a Triggered task and click Download the CA certificate for your SnapLogic organization: