I am using EE3 and PayPal Pro for processing payments on my website. I have received several emails from Paypal with this information:
“We’re contacting our merchants with some important information in response to an industry-wide security upgrade which is not unique to PayPal. This change involves upgrading Secure Sockets Layer (SSL) certificates over the course of 2015 and 2016.
Because these changes are technical in nature, we advise that you consult with your partner, website vendor, or individuals responsible for your PayPal integration. They will be able to identify what, if any, changes are needed. If you do not have a technology team, we recommend you find one, and we can work with them to ensure you continue to process payments through your current integration with PayPal. ”
Is this something that I need to deal with, or do you keep up with this?
According to their schedule, this change has already been rolled out onto the PayPal sandbox servers (since February 24th), so if there were to be any issues with Event Espresso’s integration they should have happened already when using sandbox (FYI, We test PayPal Pro sandbox daily and it’s fine).
It seems this change could potentially be affected by a server’s root certificate, specifically if the server uses the VeriSign G2 Root Certificate. You can get in touch with your host about this to make sure your server is upgraded from using a VeriSign G2 Root Certificate if it uses said certificate.
If they’re still on the G2 certificate, they’ll need to upgrade to the G5 Root Certificate:
The support post ‘Pay Pal Integration’ is closed to new replies.
Have a question about this support post? Create a new support post in our support forums and include a link to this existing support post so we can help you.
Support forum for Event Espresso 3 and Event Espresso 4.