Bosch IoT Asset Communication

2020-12-10 - Bosch IoT Hub - Root certificate migration

Let's Encrypt Root Certificate Migration

Bosch IoT Hub is using Let's Encrypt TLS certificates for all device facing endpoints and the messaging endpoint.

The current Let's Encrypt root certificate will expire in September 2021. Therefore Let's Encrypt is performing a root certificate migration to renew their root certificate in 2021.
Please ensure that in all IoT Hub clients (e.g devices) both the current Let's Encrypt root certificate ("DST Root CA X3") and the future ("ISRG Root X1") root certificate is trusted.
The mentioned certificates are both contained in the Bosch IoT Hub Certificate File.

Starting May 1st 2021 new IoT Hub certificates will be signed by the "ISRG Root X1" Let's Encrypt certificate authority.

Clients communicating with the following protocol adapters are impacted by the change:

  • MQTT protocol adapter

  • HTTP protocol adapter

  • AMQP 1.0 protocol adapter

  • LoRa protocol adapter

The clients of the CoAP protocol adapter are not impacted and no changes are necessary.

If you have any questions, feel free to reach out via email support@bosch.io.