ACME reform in the Suomi.fi Data Exchange Layer – current information
Published 18/6/2026
The Digital and Population Data Services Agency (DVV) currently estimates that the ACME service will be made available to customers in August 2026.. Within the Suomi.fi Data Exchange Layer, we are awaiting the release of the service and will proceed with deployment preparations after that.
More detailed schedules for ACME instructions, info sessions, and support clinics will be confirmed after the DVV service has been released.
We will provide the next update on the progress of the reform after the summer holiday period.
Where are we now?
During 2026, preparations are underway in the Suomi.fi Data Exchange Layer to introduce the ACME feature (Automated Certificate Management Environment).
The original schedule for the reform has changed, but preparations are progressing.
Why is this change being made?
ACME:
- reduces manual work
- lowers the risk of errors
- ensures service continuity through automatic certificate renewal
The validity period of newly issued authentication certificates has been shortened to six months as of March 2026.
With ACME, authentication and signing certificates on security servers can be renewed automatically via the security server user interface.
We will announce separately when customer organisations using the Suomi.fi Data Exchange Layer can begin adopting ACME.
What do organisations need to do?
Organisations should prepare for the deployment in advance:
Consider the security server version in planning
- To configure ACME in the security server user interface, the security server must be running at least X‑Road version 7.5.1.
- We recommend upgrading to at least this version and following upcoming version updates, as the required version may be updated.
Follow the publication of instructions
ACME instructions for Suomi.fi Data Exchange Layer customers will be published gradually on the Developers’ site.
Prepare your operating model
Organisations should already plan:
- who is responsible for the ACME account
- how certificate renewal is monitored
- how to respond to potential incidents
How will ACME be deployed?
The deployment of ACME will proceed in phases:
- creating an ACME account in DVV e‑services
- configuration on security servers
- deployment in the test environment (FI‑TEST)
- deployment in the production environment (FI)
Through the ACME account, organisations can not only manage certificates but also monitor logs. Organisations should consider in advance how they will monitor the completion of certificate renewal and registration requests, and what kind of process is in place for potential alerts.
Where to find more information?
- More information about the ACME reform: Automatically renewed certificates in the Data Exchange Layer - Suomi.fi Data Exchange Layer - Suomi.fi for Service Developers
- Technical questions: palveluvayla@palveluvayla.fi
- Other questions: palveluvayla-kayttoonotot@dvv.fi