Cloud SSL Certificate Updates
Maintenance window: September 24, 2022 00:01 to 04:00 UTCImpacted Cloud services:
Cloud SSL certificates for Identity services (.auth.konycloud.com), Engagement services (.messaging.konycloud.com), App services (.konycloud.com), and Sync services (.sync.konycloud.com)
⚠️ Note: If your application uses public key pinning, or your application has not pinned Kony certificates, no application updates will be necessary. Customers that have pinned the full SSL certificates will need to download the new certificates and rebuild the applications, including both the old and new certificates, and publish the updated binaries to the various app stores. Your applications should be published before Kony updates the certificates on the cloud servers or the applications will no longer be able to connect to Kony servers. New certificates can be found on the Kony Cloud Certificate Preview page. The new certificates can also be downloaded by executing the following commands:
Identity:
openssl s_client -showcerts -connect konycertificatepreview.auth.konycloud.com:443
Engagement:
openssl s_client -showcerts -connect konycertificatepreview.messaging.konycloud.com:7443
App:
openssl s_client -showcerts -connect konycertificatepreview.konycloud.com:8443
Sync:
openssl s_client -showcerts -connect konycertificatepreview.sync.konycloud.com:9443
Customers who have pinned the public key instead of the full certificate (which we strongly recommend and was made available in V8 SP4) will not be required to update their applications. The updated certificates will use the same public keys as the existing certificates.
If necessary, you can submit your applications for expedited approval (e.g., Apple has an expedited approval process for critical bugs, or in this case, pinned certificates).
Impact Level : high
Customer applications that have pinned SSL certificates will need to be updated as described above prior to this maintenance window. Customer applications that have not pinned SSL certificates will not be affected and will experience no service disruptions during this maintenance window.
Please refer to our documentation for how to pin the public key of a certificate (which we strongly recommend and was made available in V8 SP4) or how to pin an SSL certificate in your apps (deprecated).