This article provides step-by-step instructions on how to update the current broker certificate.
You received an Insights Hub notification that the MindConnect MQTT broker certificate needs to be replaced before Monday May 20, 2024. The current certificate MindSphereRootCA1.pem will be replaced by DigiCertGlobalRootG2.crt.pem. For details visit: https://documentation.mindsphere.io/MindSphere/howto/howto-mindconnectmqtt-certificate-expiration.html
Things to note:
To avoid connectivity issues and downtime, here are some options:
Option 1: If your device uses a trust store, you can add the new certificate so both current and new certificates are trusted. Visit the documentation page for some Python and Java examples.
Option 2: You can create a combined certificate by copying the content of the certificates into one. This allows seamless connection now and after the expiration. Step-by-step instructions:
-----BEGIN CERTIFICATE-----
MIIDjjCCA...
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIFY...
-----END CERTIFICATE-----
For Reference:
Download current broker certificate (MindSphereRootCA1.pem):
Download new broker certificate (DigiCertGlobalRootG2.crt.pem):