Objective
How do I know if my application is impacted by the DigiCert update of the default public issuance of SSL/TLS certificates (DigiCert G2 Announcement).
Context
Effective January 2025, Vonage Video API will begin renewing certificates using DigiCert’s G2 root certificate.
Applies To
- Video API
Expected Impact
Customers running supported versions of the Vonage Video SDKs will not be impacted. Supported versions and their SLA can be found here:
- Tokbox: https://tokbox.com/developer/guides/enterprise#supported-versions and
- Unified: https://developer.vonage.com/en/video/guides/enterprise-environment#supported-versions
We expect that customers using older platforms or advanced configurations may be more likely to fail to trust the new G2 certificate, and experience service disruptions.
Our testing shows that the customers using the following configurations may be impacted:
-
Unsupported and End-of-Life (EOL) Native Client SDKs
- iOS SDK version 2.11.2 and earlier
- Android SDK version 2.15.3 and earlier
-
Sessions with Participants using older unsupported browsers
- Chrome version 54 and earlier
- Firefox version 52 and earlier
- Safari version 10 and earlier
-
SIP connections where the SIP endpoint needs to accept Vonage SIP TLS certificates.
- SIP Endpoints that require SIP TLS must be ready to accept using the new DigiCert G2 certificates.
- SIP Endpoints may include SIP Trunk, Session Border Controller (SBC), SIP Proxy, etc.
- It is important that customers restricting the acceptance of calls on the basis of specific domain certificates, such as the Vonage SIP Video Domain certificate, make sure they can operate with DigiCert’s G2 versions.
-
Very restrictive Backend Servers receiving callbacks from Video API.
- These backend servers need to be updated to accept DigiCert G2 certifications.