Removal of Non-Secure Help Center Domains Follow

Announced on Development ends Removal  
February 21, 2017 May 22, 2017 August 21, 2017  

The ability to have a host-mapped domain that does not have an SSL certificate is being removed. We will stop development on May 22, 2017, and we will begin forced migrations on August 21, 2017.

This article covers the following topics:

What does this mean?

Between the announcement and end of development, Zendesk will not make feature updates to host-mapped accounts that do not have an SSL certificate, but will continue to make minor bug and security fixes at our discretion.

When development ends on May 22nd, 2017, Zendesk will no longer address bugs and minor issues specific to host-mapped accounts that do not have an SSL certificate. We will continue to resolve any major breakage in functionality until the removal date. When development ends, Zendesk will no longer provide support for host-mapped accounts that do not have an SSL certificate. We will continue to support your efforts to add an SSL certificate.

After the removal date, starting August 21, 2017, you cannot have your Help Center on a host-mapped domain without a SSL certificate in place. Zendesk will automatically provision a SSL certificate if you do not generate one before the removal date.

Any customer who has disabled SSL needs to either enable Zendesk provisioned SSL or upload a custom certificate. Zendesk Provisioned SSL is free and easy to enable (see Setting up hosted SSL). Note that Zendesk provisioned SSL uses SNI and, therefore, is not supported on Windows XP.

Why is Zendesk removing this?

We want to ensure our customers and their end users are sharing information securely. Using SSL with a proper certificate helps ensure communication with Zendesk is encrypted, and attackers are not intercepting messages in transit.

Maintaining an older version of a feature or product when a new version is available limits our ability to ensure a valuable experience with the new functionality and takes time away from supporting the new functionality.

For more details, see the Zendesk End of Life policy, How much notice will Zendesk give for deprecations?

Am I affected?

Your account is affected if you utilize host mapping and have not uploaded an SSL certificate.

To check:

  1. In Zendesk Support, click the Admin (manage_icon.png) icon in the sidebar, then select Settings > Security.
  2. Click the SSL tab at the top of the Security page.
  3. Check to see if the ‘Regular SSL’ section is present and SSL is not enabled. 
    If so, then this change affects you.
    image00.jpg

What do I need to do?

You can do one of the following:

  • Enable Zendesk-provisioned SSL
  • Upload your own SSL certificate

For information on these options, see Setting up hosted SSL.

If you do nothing, we will enable the Zendesk-provisioned SSL for you starting August 21, 2017. You can replace this certificate with your own at any time (see Replacing an SSL certificate).

What happens if I don't do anything before the removal date?

We will enable Zendesk-provisioned SSL. You can replace this certificate with your own at any time (see Replacing an SSL certificate).

Who should I contact if I need help or have questions?

Please contact maketheswitch@zendesk.com with any additional questions. 

Have more questions? Submit a request

Please sign in to leave a comment.

Powered by Zendesk