VIP SDK Security Patch and Recommended Upgrade

book

Article ID: 151113

calendar_today

Updated On:

Products

VIP Integrations VIP Software Development Kit

Issue/Introduction

 

Resolution

What is happening?

Symantec had previously communicated plans to migrate the existing Verisign PCA3 G5-chained certificates to a new root, namely, the commonly trusted DigiCert Global Root CA on June 11th, 2019.

Due to customer dependencies, this change has been postponed from December 2019 to January 14th at 2:00 pm PST

This migration requires all SDK customers to upgrade to version 2.2 or later. Otherwise, various features such as credential provisioning, PUSH notification, etc will be impacted. Symantec recommends performing this SDK upgrade immediately. 

What do I need to do?

For SDK (formerly CDK): Immediately upgrade to version 2.2 or later. If you want to leverage the new 'Device Reputation' feature, upgrade to version 3.0.1, as both versions support the certificate change.

For VIP Services: Once you begin using VIP mobile SDK 2.2 or later, check your application servers that connect to VIP Services for authentication to ensure they trust the new DigiCert Global Root CA certificate, from which the new VIP web server SSL certificates will be issued. 

For other VIP Services: Refer to Required upgrade for Symantec VIP Services and VIP Integration for Microsoft AD FS customers for detailed information. 

What URLs are affected?

VIP Authentication Service:
   https://services.vip.symantec.com
   https://services-auth.vip.symantec.com

VIP User Authentication Service:
   https://userservices-auth.vip.symantec.com

VIP Messaging Service:
   https://messaging.vip.symantec.com

 

Need help? Please contact Symantec Technical Support