Info: Deprecated Functionality from Venafi Platform


This article contains a current list of features that have been removed from shipping versions of Trust Protection Platform. 

Applies To:

All versions of Trust Protection Platform.  More details below.

See Also:

For a list of features that are scheduled for deprecation in upcoming releases, see

Venafi Platform 17.4

Microsoft SQL Server 2008 R2
Venafi Trust Protection Platform no longer works with Microsoft SQL Server 2008 R2.  Please upgrade to a recently patched version of Microsoft SQL 2012 R2, 2014, or 2016 prior to installing TPP 17.4 or higher.

See Also: Error: "This Upgrade Is Not Allowed Due To An Incompatible Version Of SQL Server"

Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 R2 is no longer a supported version to run Venafi Trust Protection Platform 17.4 or higher.  Before upgrading you TPP environment, you will want to have new Windows Servers available to install TPP on to replace your existing Servers running older versions of TPP.  Currently supported versions of Windows Server are: Microsoft Windows 2016 Server (server with user interface) and Microsoft Windows 2012 Server R2 (server with user interface).

Venafi Server Agent no longer supports Windows Server 2003
In order for the Venafi Server Agent to update it's runtime libraries, support for Windows Server 2003 had to be dropped. The 17.4 version of the Server Agent will not run on Windows Server 2003. Please upgrade your Windows Servers 2003 to newer versions of the Microsoft Server Operating System in order to continue to have the Venafi Agent installed on those systems.

Venafi Platform 17.3 

Transition IBM DataPower Driver interface from SSH to REST
This driver has been transitioned from SSH CLI to a REST API.  DataPower versions prior to 7.2 will no longer be supported; however, they should still be compatible.  Versions being targeted for support are XI52 7.2 and IDG 7.5.

Transition DigiCert CA Driver from Enterprise to CertCentral API
The DigiCert CA driver has been migrated from the legacy Enterprise API to the current CertCentral API. You will need to have your account migrated. DigiCert has stated that they are available to help customers with the migration.

Venafi Platform 17.2

Supported Firefox version Update
Supported web browsers have been updated to Internet Explorer 11 and Mozilla FireFox ESR 52. The latest version of Google Chrome is still categorized as a compatible browser.

Devices removed from Aperture Folder tree
Devices have been removed from the Aperture Folder tree so that only Folders are visible.  This was done to enhance performance and usability.  Devices are still accessible to SSH customers in the Aperture Inventory menu.

Inventory > Devices top navigation menu. Agent Discovery of Root Certificates
In order to increase performance of Server Agent Certificate Discovery, Trust Protection Platform no longer stores data where it was found for root and intermediate certificates.  In previous versions, partial information on where the Root certificate was discovered was available from the Support tab.

IBM GSK Driver Support for GSK version 6.0
The GSK Certificate Installation Driver no longer supports version 6.0.  Version 6.0 reached end-of-life in September 2013.

Java Key Store (JKS) Driver Support for Java version 1.4 or 1.5
The Java Key Store (JKS) Certificate Installation Driver no longer supports Java versions 1.4 or 1.5. These versions reached their end-of-life in October 2008 and October 2009, respectively.

Venafi Platform 17.1

Brocade Application Driver
The Brocade Application Driver used for certificate installations is no longer available.

Verizon SureServer Certificate Authority Driver
The Verizon SureServer Certificate Authority Driver used for certificate enrollments is no longer available.

Oracle DB support
Oracle is no longer supported. For more information refer to:

Canned CA Trust Report
The canned CA Trust Report found in the Web Administration Console has been removed.

Web Admin Licensing Status Dashboard
This functionality has been migrated to Aperture and is now visible on the new System Status dashboard.

Venafi Support Tool
The Venafi Support Tool is removed.  It has been replaced by a new utility called the Venafi Support Center.

Venafi Platform 16.4

VED Client UI Portal
The undocumented and unsupported UI Portal component has been removed.  This change should not affect any customers. 

z/OS CA driver
The z/OS CA driver has been removed from Trust Protection Platform. This integration is outdated and the Adaptable CA driver provides a better alternative.

Venafi Platform 16.3

SSH non-recursive discovery
SSH Key Discovery no longer supports performing non-recursive scans. The ability to scan "just this folder" and exclude all sub-folders is no longer available.

Aperture certificate status “Revocation Approval Required”
The Certificate Status of Revocation Approval Required has been replaced with Pending My Approval.

Venafi Server Agent has deprecated support for Hewlett Packard Unix Persistent Architecture Reduced Instruction Set Computer (HP-UX PA-RISC)
Venafi Trust Protection Platform no longer includes an agent installer for HP-UX PA-RISC.  This does not affect our support for HP-UX on Itanium Processors (HP-UX IA).  Hewlett Packard stopped supporting HP-UX PA-RISC in early 2005.  We have deprecated support for this specific operating system so that we can realign resources to support newer and more popular enterprise operating systems.

Fore more information about the deprecation of PA-RISC, visit:

Aperture License dashboard widget and filter
The License dashboard widget and certificate list License filter have been removed from the Aperture console.  If this filter was used in a saved Custom Report, the report will be updated to remove this filter. Licensing information can be retrieved using the in-product Licensing Report found in the Web Administration Console.

Venafi Platform 16.2

No feature deprecations were made during this release. 

Venafi Platform 16.1

Internet Explorer 8
Internet Explorer 8 has not been supported since Venafi Trust Protection Platform 14.1. Core libraries of Aperture were updated for security fixes and performance enhancements, which resulted in Aperture's incompatibility with Internet Explorer 8. You can no longer access Aperture using IE 8. We recommend that yo prepare your organization by migrating users to supported web browsers before upgrading to this release. 

See Also: Why we deprecated Internet Explorer 8 

Certificate Settings Read-only During Enrollment Processing or While In Error
In Trust Protection Platform 15.4.0, certificate enrollment settings cannot be modified while a certificate is enrolling/processing or in Error. In order to make changes to the certificate (ex: change the common name of the certificate), users will need to Reset the certificate state in the Web Administration Console in order to be able to make any required changes.

Further security related changes have been made in 16.1 that now prevent users from altering a certificate request after it has progressed beyond the start of the renewal process, such as uploading a CSR. As such, any certificates that are waiting for a new CSR to be uploaded prior to upgrading to 16.1 will need to be reset and restarted using WebAdmin after successfully upgrading Trust Protection Platform in order to complete the certificate renewal.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request


Powered by Zendesk