Security Keys - Resolving the "Key Expiration Notice" Email Notification
000002921
30
05/26/2026 13:54 PM
7.0
Introduction
This article explains what to do when you receive an email titled similar to "Key Expiration Notice: 60 Days Update Notification". The email indicates that one or more security keys associated with your Organization ID will expire soon, and provides guidance on how to generate a replacement key to ensure uninterrupted, secure transmission of data between your systems and the transaction processing servers.
Problem Description
You receive an email explaining that you must update your security key(s) in order to avoid an interruption to transaction processing. The email title is similar to, "Key Expiration Notice: 60 Days Update Notification".
Cause
One or more security keys associated with your Organization ID will expire in the next 60 days or less. You must generate new keys to ensure uninterrupted, secure transmission of data between your systems and our transaction processing servers.
Resolution
Generate a new key to replace the key referenced in the email in order to continue processing transactions.
Replacing the Expiring Security Key
Identify the merchant ID and key that requires replacement.
The email, starting with the subject "Key Expiration Notice...", lists your CyberSource merchant ID in the Owner field.
Choose and follow the instructions below to generate a new key for your chosen integration method(s):
Delete or deactivate the expiring key that is identified in the email.
After generating the key, place it within your application or keys directory. Consult your IT team if you require additional assistance with placing the key(s).
Potential Client Questions
- Why did I receive a Key Expiration Notice email?
- You received the email because one or more security keys associated with your Organization ID will expire within the next 60 days or less. The notice is sent in advance so you can generate a replacement key before the existing one expires and avoid disruption to transaction processing.
- How do I identify which key is expiring?
- The email lists your CyberSource merchant ID in the Owner field. Use this information, along with the key details in the email, to identify the specific key that needs to be replaced.
- Which integration method instructions should I follow?
- Follow the instructions that match your integration method (Secure Acceptance, Simple Order API, SOAP Toolkit API, or SCMP API). Links to the corresponding step-by-step guides are provided in the "Replacing the Expiring Security Key" section above.
- What happens if I do not replace the expiring key?
- If the expiring key is not replaced before the expiration date, transaction processing using that key will be interrupted.
- What should I do after generating the new key?
- Place the new key within your application or keys directory and then delete or deactivate the expiring key. Consult your IT team if you require additional assistance with placing the key(s).
Additional Resources
Was this article helpful?
