To maintain Zoom’s high security standards regarding Zoom applications, connectivity, and media across the Zoom Phone platform, we are moving to the industry standard of using a trusted Public Certificate Authority.
With this change, phone users and admins must meet these requirements by the following dates to ensure there’s no service disruption.
|Region/SIP zone||Certificate change date|
|Asia/Pacific||February 26th, 2021|
|Europe, Middle East, Africa, South America||March 6th, 2021|
|Australia||March 13th, 2021|
|US Central||March 20th, 2021|
|US West||March 27th, 2021|
|US East||April 3rd, 2021|
Important: Most of this article applies to admins. If you're a Zoom Phone user, make sure you have the Zoom desktop client or mobile app version 5.0.5 or later to ensure full functionality. We recommend that you upgrade to the latest version of Zoom.
This article covers:
- Requirements for phone users
- Requirements for admins
- DigiCert Root Certificates for admins
Requirements for phone users
Requirements for admins
Zoom Phone admins should ensure these requirements if your account has the following:
Note: If your account does not have any of the following, no action is required.
Accounts with Zoom Rooms using Zoom Phone
If your account has Zoom Rooms using Zoom Phone, all Zoom Rooms software must be on version 5.0.5 or later for full functionality. You can remotely upgrade Zoom Rooms using the Zoom web portal.
Accounts with generic, Algo, or CyberData devices
If your account has provisioned generic, Algo, or CyberData certified devices that support certificates from a public certificate authority (for example, DigiCert), then there will be no impact to your devices. If you need a new public certificate, please see the DigiCert Root Certificates below.
The server names for generic devices will also change and you can find the server name each device type will need at our Zoom Phone Public Certificate Authority page.
Accounts with Bring Your Own Carrier (BYOC)
Note: If your BYOC configuration is utilizing UDP connections, there is no impact and switching to TLS is not required.
If your account leverages our Bring Your Own Carrier (BYOC) offering, admins are required to upload the DigiCert Root Certificates below into their session border controller (SBC) to ensure that BYOC/BYOP trunks that are configured for TLS continue to operate after the certificate change.
DigiCert Root Certificates for admins
Note: You only need these certificates for accounts with BYOC, or generic, Algo, or CyberData devices.
If you get the following error codes, make sure you have the latest version of Zoom installed.
- 702: SSL Certificate failed - Cert Name mismatch
- 703: SSL Certificate failed - Handshake failed