Download the Salesforce Client Certificate
Your application (endpoint) server’s SSL/TLS can be configured to require client
certificates (two-way SSL/TLS) to validate the identity of the Salesforce server when it
takes the role of client to your server. If so, you can download the Salesforce client
certificate from the Salesforce API page.
- From Setup, enter API in the Quick Find box, then select API.
- On the API WSDL page, click Manage API Client Certificate.
- On the Certificate and Key Management page, in the API Client Certificate section, click the API Client Certificate.
- On the Certificates page, click Download Certificate. The
.crt file is saved in the download location specified in your browser.
Import the downloaded certificate into your application server, and configure your application server to request the client certificate. The application server then checks that the certificate used in the SSL/TLS handshake matches the one you downloaded.