Bosch IoT Hub is using Let’s Encrypt TLS certificates for all devices facing endpoints and the messaging endpoint. The current Let’s Encrypt root certificate will expire in September 2021. Therefore Let’s Encrypt is performing a root certificate migration to renew their root certificate in 2021.
Please ensure that in all Bosch IoT Hub clients (e.g. devices) that both the current Let’s Encrypt root certificate (“DST Root CA X3“) and the future (“ISRG Root X1“) root certificate are trusted. The mentioned “ISRG Root X1″certificate can be downloaded here.
Starting May 1, 2021 new Bosch IoT Hub certificates will be signed by the “ISRG Root X1” Let’s Encrypt certificate authority.
Clients communicating with the following protocol adapters are impacted by the change:
- MQTT protocol adapter
- HTTP protocol adapter
- AMQP 1.0 protocol adapter
- LoRa protocol adapter
The clients of the CoAP protocol adapter are not impacted and no changes are necessary.
If you have any questions, feel free to reach out via email support@bosch.io.