Info: Functionality Scheduled for Deprecation


Occasionally, we remove functionality from Trust Protection Platform to stay current with emerging technologies and to serve the changing needs of our customers. Some of the more common reasons for deprecating features include the following:

  • Minimal use of a feature by the majority of our customers
  • Technologies that have become obsolete
  • Features that have become too expensive to maintain
  • Changes in our technology road map 
  • Important security enhancements to Trust Protection Platform

See Also:

For a list of features that have been deprecated prior to the current release, visit:

Scheduled Feature

Although planned feature deprecations are subject to change, the following list indicates which features are planned for removal from upcoming releases of Trust Protection Platform:


Venafi Platform 21.3

Symantec MPKI CA Driver
The  Symantec MPKI CA driver will be deprecated in 21.3. Once you upgrade to 21.3 any existing Symantec MPKI CA Templates will become unavailable. Certificates using the Symantec MPKI CA driver should be migrated manually to DigiCert CA.

Internet Explorer 11 will no longer be supported by the Web Consoles
Starting in 21.3, Chrome and the Chromium version of Edge will be the only supported browsers.  Firefox will continue to be compatible with the Web Consoles of the Trust Protection Platform.


Venafi Platform 21.4

Pass-through Authentication
With the release of SAML support, we plan on deprecating the support for pass-through authentication. Before SAML was introduced, Pass-through authentication is the mechanism that was used to integrate with Oracle Identity and Access Manager (IAM).  If you are using IAM with the Venafi Trust Protection Platform, please update your configuration to leverage SAML prior to upgrading to 21.4 or higher. 

WebSDK Authorization Method involving API keys is only available with a License Key
Starting in 21.4, only customers with a special, temporary license key from Venafi will be able to leverage WebSDK API Keys to authenticate to the WebSDK.  Without the license key, both POST Authorize and the WebSDK Permission will not be available.


Venafi Server Agent on HP-UX 

We intend to stop producing new releases of Venafi Server Agent on HP-UX (Itanium) with the 21.4 release, making the 21.3 release the the last to include support for the platform. 

VAM nShield Certificate Installation Driver Deprecation
Starting in 21.4, application objects for VAM nShield Certificate Installation instances will be converted to basic application objects.


Venafi Platform 22.1

WebSDK Authorization Method involving API Keys (End-of-Support)
The WebSDK authorization method that involves API keys was formally deprecated in Trust Protection Platform 20.2 and will no longer be available in code beginning in 21.4.  The "WebSDk" permission that is available on users and groups will no longer be available.  The temporary license key introduced in 21.3 will no longer be available.

Imperva MX will support provisioning of device certificates only
Starting in 22.1 Imperva MX driver will be able to provision device certificates only. After upgrading to 22.1 existing Imperva MX applications will be converted to Basic applications and retain certificate association. Provisioning certificates in bulk to Imperva MX can be accomplished using the Adaptable Bulk Provisioning job.



Was this article helpful?
3 out of 3 found this helpful


  • Avatar
    Aaron Hixson

    Article updated on June 19, 2018

  • Avatar
    Aaron Hixson

    Article updated on April 7, 2020 - Removed items that were deprecated in 20.1 since 20.1 has shipped.  Added Windows Server 2012 R2 to be deprecated.  in 20.2 will lower from supported to compatible.  In 20.3 we will drop support for Windows 2012 R2 completely for hosting installations of TPP.

  • Avatar
    Aaron Hixson

    Article updated on May 12, 2020 - Some deprecation items were moved from 20.2 to 20.3.  Also, more detail was added regarding timeline for deprecating WebSDK API keys now that WebSDK Tokens have been delivered in 20.1

  • Avatar
    Aaron Hixson

    Article updated on August 11, 2020 to remove items that were deprecated in 20.2 since 20.2 has shipped. Also added TrustNet to the deprecation list scheduled for 20.3

  • Avatar
    Aaron Hixson

    Article updated September 29, 2020 to accommodate 20.3 release.  Added Pass-through authentication to the list.

  • Avatar
    Aaron Hixson

    Added IE11 to the deprecation list

  • Avatar
    Aaron Hixson

    21.1 Removed from the list because 21.1 has shipped.

  • Avatar
    Aaron Hixson

    Updated on May 18, 2021 because some deprecations were pushed out to later releases

  • Avatar
    Aaron Hixson

    Updated May 27, 2021 to add VAM nShield to the 21.4 deprecation list.

    Edited by Aaron Hixson
  • Avatar
    Aaron Hixson

    Updated August 3, 2021 to updated versions for Symantec, API Key, and Imperva deprecation versions