One root CA? Why are ther 3 CA certificates in certs.c ? RRS feed

  • Question

  • 1) If we add Baltimore CyberTrust Root to our IoT device, will we be able to communicate with all IoT hubs? Or do we need to add all 3 certificates in certs.c

    2) We have noticed that our iot-hub presents a server certificate with a chain ending in Baltimore CyberTrust Root. Can we assume this will not change, i.e. the server certificate will be signed by Baltimore CyberTrust Root until that certificate expires in 2025 ?

    Wednesday, September 18, 2019 1:05 PM


  • Hello kskogstrom,

    I confirmed that the other certs are used to connect to different clouds, therefore you are safe removing them if you are connecting only to the global Azure regions. 

    We will add more details on the certs.c file soon. Thank you so much for bringing this up :)!

    Friday, October 25, 2019 6:04 PM

All replies