PAS Security

• XiPay

• XiSecure

PAS utilizes NTLM authentication and client certificates for security to XiPay and XiSecure respectively.

XiPay

The gd_bundle.crt file is used to authenticate to the XiPay Web Service along with your Web Service Account (WSA) User Name and Password that was provided by SaaS Operations during onboarding.

The User Name and Password are used during the Auth/Settle - XiPay Program Configuration and are unique for each environment: DEV, QA, and PROD. When the Production environment is established, you are provided instructions on how to change the Password in the WSA notification email.

When you install PAS, the gd_bundle.crt file is automatically saved to the directory defined below depending upon whether you are installing on Windows or RHEL:

Windows

\Program Files\Paymetric\Paymetric Adapters for SAP\

RHEL

/etc/pas

XiSecure

For XiSecure, during the onboarding process you should have created a Certificate Signing Request (CSR) and then received a signed client certificate file from Paymetric Operations. When creating the CSR, you would have generated a privatekey.pem file as well and established a privatekey password.

The signed client certificate and the privatekey file should be saved to a secure location either on or accessible by the PAS server. Do not save these files in the standard PAS install folder to ensure they are not overwritten. The file location is used when performing Tokenization - XiSecure Program configuration. For example ...

Windows

c:\certificates

RHEL

/usr/local/certs