New server certificates GBA message service

The government uses Public Key Infrastructure certificates for secure exchange of data. These certificates have limited validity. In October 2019, the server certificates of the GBA message service will expire. This concerns both the production environment and the test environment (Schouwing & Toetsing).

RvIG August 28, 2019

News

All municipalities and customers with a mailbox in the GBA messaging service must start using the public part of these new server certificates and also change the IP address to which the connection is made. The new certificates and the new IP addresses are already operational.

When should you do something?

Check if your system needs to be modified due to the replacement of server certificates. If you do not know this yourself, contact your IT department and/or vendor if these changes will impact your system.

Use of services through a processor

Are you using the GBA Information Service through a processor? If so, you do not have to do anything. Your processor will take care of the transition to the new PKIoverheid certificate.

The certificates, including CA certificates

When your system verifies identity against PKIoverheid's certificate chain trust, make sure the CA certificates below are trusted.
- Server certificate production environment including trust chain certificates
- Server certificate trial environment including trust certificate

The certificates, only the public parts of the server certificates

If you are verifying identity using the certificate at the lowest level of the chain, you must include the public part of the server certificate in your truststore.
- Server certificate production environment
- Server certificate trial environment

What are the old and new IP addresses?

The current IP address of the GBA production environment is 192.168.74.24 (port 24)
The new IP address of the GBA production environment is 192.168.74.27 (port 24)

The current IP address of the GBA Trial Garden environment is 192.168.74.25 (port 24)
The new IP address of the GBA Trial Garden environment is 192.168.74.26 (port 24)

User(s) connecting through Diginetwerk set up the connection through a different IP address

For this:

The current IP address of the GBA production environment is 95.152.160.68 (port 24)
The new IP address of the GBA production environment is 95.152.160.66 (port 24)

The current IP address of the GBA Trial Garden environment is 95.152.160.67 (port 24)
The new IP address of the GBA Trial Garden environment is 95.152.160.65 (port 24)

This news item can also be found in the Information Security file

Comments

MORE REACTIONS

AP helpt zorginstanties met verwerking gezondheidsgegevens in de cloud

News/press release

Rijksmedewerkers gaan beter om met overheidsinformatie

News/press release

Rekenkamer waarschuwt: quantum kan overheidssystemen kraken

News/press release

Dutch open door for criminals online

News/press release

Recent research by the Rijksoverheid shows that the Dutch do not see the need to double secure e-mail. 4 in 10 (38%) do not consider their own e-mail interesting...

GP emergency care threatens to fall behind on information security

News/press release

Health and Youth Inspectorate