For the use of AEB cloud services, the following host names and associated HTTPS SSL/TLS certificates issued by certificate authorities are in use. Operating systems and browsers usually already have the root certificates of these certificate authorities in their trust stores and there are corresponding automatic update mechanisms. In some cases (e.g., SAP® connections), however, the root and sometimes intermediate certificates must be imported manually into the respective trust stores.
- The root and/or intermediate certificates are subject to change. To receive early email notification of this, subscribe to this Help Center article.
AEB data centers currently use the following host names and certificates:
| Hostnames | Validity | Intermediate CA | Root CA |
|
rz3.aeb.de *.dc.aeb.com |
previous | DigiCert SHA2 Extended Validation Server CA | DigiCert High Assurance EV Root CA |
| from 2025 (*) | DigiCert Global G2 TLS RSA SHA256 2020 CA1 | DigiCert Global Root G2 | |
|
rz4.aeb.de update.aeb.com *.ctx.dc.aeb.com |
previous | DigiCert TLS RSA SHA256 2020 CA1 | DigiCert Global Root CA |
| from 2025 (*) | DigiCert Global G2 TLS RSA SHA256 2020 CA1 | DigiCert Global Root G2 | |
|
*.next.aeb.com *.next.dev.aeb.com *.nxt.aeb.com |
previous | Sectigo RSA Domain Validation Secure Server CA | USERTrust RSA Certification Authority |
| from 2025 (*) | Sectigo Public Server Authentication CA DV R36 | Sectigo Public Server Authentication Root R46 | |
|
*.app.aeb.com *.idp*.aeb.com |
previous | Let's Encrypt Intermediate CAs | Let's Encrypt Root CAs |
For information on AEB data center public IP subnetworks, see this Help Center article.
(*) Overview of changes in 2025
| Hostname | Planned certificate rotation date (of AEB) |
| xnsg.dc.aeb.com | July 01, 2025 |
| *.next.dev.aeb.com | July 24, 2025 |
| *.next.aeb.com | July 24, 2025 |
| rz3.aeb.de | September 21, 2025 |
| *.nxt.aeb.com | December 11, 2025 |
Comments
The Intermediate CAs for *.idp.aeb.com and *.app.aeb.com were supplemented by the following on April 8, 2024: R10-R14
The table now includes new certificate chains that will be available for use starting in June 2025.
The changeover date for the hostname *.nxt.aeb.com has been set for December 11, 2025 and has been added to the table above.
The intermediate and root CAs for *.app.aeb.com and *.idp*.aeb.com were replaced on March 4, 2026, with links to the corresponding CA website.
Please note in particular the “Generation Y” certificates that will be added on May 13, 2026.
Please sign in to leave a comment.