In the spring of 2025, Symantec VIP (Broadcom) will issue new SSL certificates for VIP endpoints from the DigiCert Global Root G2 CA. VIP Enterprise Gateway version 9.10.x and older are affected by this change - action is required to avoid a service disruption.

What is happening?

Symantec VIP is renewing all SSL certificates with a different CA. The new certificates will chain to the DigiCert Global Root G2 CA. 

When will the change happen? 

The exact data will be posted on this page when it is announced. 

What action is required?

VIP Enterprise Gateway G2 Import Tool Instructions:

• Download and unzip the attached VIP_EG_G2Support.zip to a temp location.
• Open an administrator command prompt/shell and navigate to the extracted location of the VIP_EG_G2Support.zip.
• Windows:
  • VIP EG 9.9.x, type:

    set "VRSN_MAUTH_HOME=C:\Program Files (x86)\Symantec\VIP_Enterprise_Gateway"

  • VIP EG 9.10.x, type:
    

    set "VRSN_MAUTH_HOME=C:\Program Files\Symantec\VIP_Enterprise_Gateway"
    

  • Type g2support.bat and press enter 
    
    
• Linux:
  • Type export VRSN_MAUTH_HOME=<VIP_EG_Install_ Directory> and press enter
  • Type g2support.sh and press enter 
• The script may take a few minutes to run. You may see a warning message "WARNING: Runtime environment or build system does not support multi-release JARs. This will impact location-based features."
• The message "Changes to certificate Store(s) saved successfully" indicates the script is complete.