search cancel

VIP SDK Security Patch and Recommended Upgrade


Article ID: 151113


Updated On:


VIP Integrations VIP Software Development Kit




What is happening?

Symantec had previously communicated plans to migrate the existing Verisign PCA3 G5-chained certificates to a new root, namely, the commonly trusted DigiCert Global Root CA on June 11th, 2019.

Due to customer dependencies, this change has been postponed from December 2019 to January 14th at 2:00 pm PST

This migration requires all SDK customers to upgrade to version 2.2 or later. Otherwise, various features such as credential provisioning, PUSH notification, etc will be impacted. Symantec recommends performing this SDK upgrade immediately. 

What do I need to do?

For SDK (formerly CDK): Immediately upgrade to version 2.2 or later. If you want to leverage the new 'Device Reputation' feature, upgrade to version 3.0.1, as both versions support the certificate change.

For VIP Services: Once you begin using VIP mobile SDK 2.2 or later, check your application servers that connect to VIP Services for authentication to ensure they trust the new DigiCert Global Root CA certificate, from which the new VIP web server SSL certificates will be issued. 

For other VIP Services: Refer to Required upgrade for Symantec VIP Services and VIP Integration for Microsoft AD FS customers for detailed information. 

What URLs are affected?

VIP Authentication Service:

VIP User Authentication Service:

VIP Messaging Service:


Need help? Please contact Symantec Technical Support