Skip to main content

On February 24th, 2025 at 5PM PST, we will be renewing the SSL certificate used for api.amplitude.com and analytics.amplitude.com domains. We are only updating our end-entity certificate without any changes to our intermediate or root certificates. For the vast majority of situations, we do not expect any impact with sending data to Amplitude or using Amplitude.

 

How do I know if I am impacted?

 

To understand if you are impacted, please reach out to your team responsible for the Amplitude implementation (e.g. IT, Engineering, or the team who handles the Amplitude SDK) and send them the information within this post. If you answer yes to any of the three questions below, then you are impacted by this update and we will provide you with our new end-entity certificate. If you answer yes to question 2, we will additionally provide you with our entire chain of root and intermediate certificates. These scenarios are very rare and will not require action from the majority of customers.

  • Do your systems trust only the current Amplitude end-entity certificate that is expiring?
  • Do your systems pin the entire SSL certificate chain?
  • Does your SSO implementation specifically import our end-entity certificate?

You are not impacted and no action is required if you answer yes to any of the following:

  • Are Amplitude SDKs (without SSL pinning enabled) used to send data to Amplitude?
  • Is an integration (e.g. Segment or any other source listed in our Source Catalog) used to send data to Amplitude?
  • Do you not use SSL pinning at all?

What should I do if I've confirmed my organization is impacted?

Please contact our technical support team by submitting a ticket via this link and selecting the "Service Task" option under the Request Type field. A technical support team member will provide you with our new end-entity certificate so that you can update it in your systems before we replace it. If you answer yes to question 2 above, please let us know and we will additionally provide you with our entire chain of root and intermediate certificates. 

IMPORTANT: If you do not take the necessary steps, you may be unable to log into Amplitude if your SSO implementation relies on our old end-entity certificate, or send data to api.amplitude.com if you pin the entire certificate chain.

If you have any other questions, please reach out to our technical support team via support.amplitude.com.

Thank you.
 

Be the first to reply!

Reply


Terms & ConditionsCookie settings