Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
Bookmark
|
Subscribe
|
3050
Views
1
Helpful
2
Comments

Cisco Umbrella transitioning from DigiCert to Identrust certificates

adaswani
Cisco Employee
Cisco Employee

‎04-14-2025 05:48 PM - edited ‎04-29-2025 01:54 PM

April 29, 2025 Update:

Cisco is postponing the transition to a later date. We’ll share an update here once the new date is decided. Thank you for your understanding and continued partnership.

April 14, 2025 announcement:

Starting May 13, 2025, Cisco Umbrella will start transitioning its domains from using DigiCert certificates to using Identrust certificates.  While we anticipate that this change will have no impact on the majority of devices and users that use software that connects to Cisco domains which are verified using DigiCert certificates, we recommend that customers verify the Identrust root certificate and connectivity requirements are met before May 13, 2025, to ensure a seamless transition and avoid potential disruption.   

 

Action Recommended: Check root certificate installation and device connectivity    

  • Check for Identrust root certificate in trust store   

Ensure that the Identrust root certificate is installed in the trust store of your devices. Most modern browsers and operating systems include this certificate, provided they are up to date, but this may not be the case for certain network appliances or virtual appliances.    
 

  • Confirm device connectivity   

Confirm that your devices can connect to the following CRL and OCSP responder URLs associated with Identrust:   

If you have any questions or need assistance, our support team is available to help at umbrella-support@cisco.com.

Labels:
0 Helpful
Comments
pacarini@cisco.com
Cisco Employee
Cisco Employee
‎05-07-2025 01:32 AM

It would be really useful to provide updated information about connectivity requirements for CRL and OCSP responder URLs associated with Identrust in the Umbrella product documentation pages:
- Manage Virtual Appliance -> Introduction -> Prerequisites
https://docs.umbrella.com/umbrella-user-guide/docs/prerequisites-2

- Communication Flow and Troubleshooting

https://docs.umbrella.com/deployment-umbrella/docs/communication-flow-and-troubleshooting-1

LeonardoSchieder
Level 1
Level 1
‎05-07-2025 02:11 AM

Hello pacarini@cisco.com 

in Cisco Case 1856897 (November 2024) and 1911788 (March 2025) I pointed out that from the server on which we installed the Cisco Umbrella AD Connector we were seeing connections to

  • validation.identrust.com
  • commercial.ocsp.identrust.com

on our firewall logs, which were not documented.

Greets, Leonardo

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Top