Page 1 of 1

Certificates updated on OpenProducts backend servers

Posted: Fri Jul 10, 2020 12:41 pm
by tor
TL;DR: If your OpenProducts based backup or dns update stopped working recently make sure you are running the Kinguard 20.07 release on a restarted device.

OpenProducts today updated all backend certificates used to authenticate servers and encrypt communications between them and units such as OPI and Keep. The reason for the upgrade is that the old certificates used SHA1 hashes which are nowadays considered insecure and it has been a long overdue update.

One of the parts of the upgrade yesterday was the client part of this that let devices trust the new certificates. Thus if you did not do that upgrade connections will most likely fail with OpenProducts servers. To resolve this issue update the device to the latest 20.07 release.