Azure IoT root CA (DigiCert Global G2) update for Azure IoT SDK

Jeon, June 21 Reputation points
2021-07-08T17:17:55.007+00:00

We are using AZ IoT SDK 1.3.8 with ESP32 platform.
As I noticed that as long as we use AZ IoT SDK, we do not need to update the certificate. however, the SDK includes cert.c which includes multiple root CAs.
So, my questions are :

  1. do we still need to update the certificate as long as we use only IoT hub and DPS?
  2. If we use other service which requires https connection, do we need to update it?
Azure IoT Hub
Azure IoT Hub
An Azure service that enables bidirectional communication between internet of things (IoT) devices and applications.
1,189 questions
Azure IoT SDK
Azure IoT SDK
An Azure software development kit that facilitates building applications that connect to Azure IoT services.
221 questions
{count} votes

Accepted answer
  1. AshokPeddakotla-MSFT 33,851 Reputation points
    2021-07-26T04:26:19.217+00:00

    @Jeon, June Apologies for the delay in response. Below is an update from our team on your queries.

    https://github.com/Azure/azure-iot-sdk-c/pull/1971/files adds support for the DigiCert Global Root. Both RSA and ECC certs are supported with this change. Of course, you need to still validate your application and configuration of the ESP32 wifi as defined here https://techcommunity.microsoft.com/t5/internet-of-things/azure-iot-tls-critical-changes-are-almost-here-and-why-you/ba-p/2393169

    Hope this helps. Do let us know if you have any further queries.

    If the response is helpful, please click "Accept Answer" and upvote it.

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.