SCIS Mobile Certificates are custom records installed by SuiteCommerce InStore (SCIS). The custom record stores authorizing certificates. A standard set of certificates is created when the SCIS bundle is installed.
Updating SCIS Mobile Certificates
As certificates expire, an administrator must update the domain with a new certificate. When mobile certificates have expired, the SCIS for iOS app displays a warning message prior to login. The sales associate can ignore the expired certificate warning or continue.
To update the certificate fingerprint:
Login to NetSuite.
Go to Customization > List, Records & Fields > Record Types.
Click Edit next to the host domain named in the warning message. For example, in the following screenshot, the Fingerprint for host domain, system.na1.netsuite.com must be updated.
Under the Certificate Fingerprint field, enter the new Fingerprint.
For a list of Mobile Certificates and Certificate Fingerprints, refer to SuiteAnswers.
Click Save when you are finished entering a new Fingerprint.
Whenever a certificate is updated or added, the user must log out first, and then and log in to SCIS on the mobile device to refresh the configuration settings.
Adding a Mobile Certificate Entry
To keep the list of SCIS Mobile Certificates records up to date, you may need to create a new entry. Use the following instructions.
To create a new SCIS Mobile Certificate entry:
Go to Customization > Lists, Records & Fields > Record Types
Scroll to SCIS Mobile Certificates and click New Record.
Enter the domain in the Name field.
Copy and paste the fingerprint hash in the Certificate Fingerprint field.
Obtaining Domain Fingerprints for SCIS Mobile Certificates
To obtain a domain Fingerprint when updating or creating an SCIS Mobile Certificate, you can use OpenSSL, or find the Fingerprint in the Firefox browser information.
Using OpenSSL to Obtain a Domain’s SHA-256 Fingerprint
You will need this fingerprint to paste into the Certificate Fingerprint field on the individual SCIS Mobile Certificate record. If you have OpenSSL installed, you can run the following command to return the domain fingerprint:
openssl x509 -noout -fingerprint -sha256 -inform pem -in [certificate-file.crt]
Using Firefox to Obtain a Domain’s SHA-256 Fingerprint
Firefox (versions 31 and higher) provides one of the most straightforward methods of obtaining a domain’s SHA-256 Fingerprint. You must paste this fingerprint into the Certificate Fingerprint field on the individual Mobile Certificate Record.
To obtain a domain’s SHA-256 fingerprint using Firefox:
Open Firefox and navigate to the required URL, for example system.netsuite.com.
Double-click the padlock icon in the address bar.
Click More Information.
Click View Certificate.
Under Fingerprints, copy the SHA-256 Fingerprint hash.