Zoom Phone certificate update

Last Updated :

Overview

To maintain Zoom’s high security standards regarding Zoom applications, connectivity, and media across the Zoom Phone platform, we are moving to the industry standard of using a trusted Public Certificate Authority.

With this change, phone users and admins must meet these requirements by the following dates to ensure there’s no service disruption.

Region/SIP zone	Certificate change date
Asia/Pacific	February 26th, 2021
Europe, Middle East, Africa, South America	March 6th, 2021
Australia	March 13th, 2021
US Central	March 20th, 2021
US West	March 27th, 2021
US East	April 3rd, 2021

Important: Most of this article applies to admins. If you're a Zoom Phone user, make sure you have the Zoom desktop client or mobile app version 5.0.5 or later to ensure full functionality. We recommend that you upgrade to the latest version of Zoom.

This article covers:

Requirements for phone users
Requirements for admins
DigiCert Root Certificates for admins
Troubleshooting

Requirements for phone users

All Zoom Phone users must be on the Zoom desktop client or mobile app version 5.0.5 or later for full functionality. We recommend that you upgrade to the latest version of Zoom.

Requirements for admins

Zoom Phone admins should ensure these requirements if your account has the following:

Note: If your account does not have any of the following, no action is required.

Accounts with Zoom Rooms using Zoom Phone

If your account has Zoom Rooms using Zoom Phone, all Zoom Rooms software must be on version 5.0.5 or later for full functionality. You can remotely upgrade Zoom Rooms using the Zoom web portal.

Accounts with generic, Algo, or CyberData devices

If your account has provisioned generic, Algo, or CyberData certified devices that support certificates from a public certificate authority (for example, DigiCert), then there will be no impact to your devices. If you need a new public certificate, please see the DigiCert Root Certificates below.

The server names for generic devices will also change and you can find the server name each device type will need at our Zoom Phone Public Certificate Authority page.

Accounts with Bring Your Own Carrier (BYOC)

Note: If your BYOC configuration is utilizing UDP connections, there is no impact and switching to TLS is not required.

If your account leverages our Bring Your Own Carrier (BYOC) offering, admins are required to upload the DigiCert Root Certificates below into their session border controller (SBC) to ensure that BYOC/BYOP trunks that are configured for TLS continue to operate after the certificate change.

DigiCert Root Certificates for admins

Note: You only need these certificates for accounts with BYOC, or generic, Algo, or CyberData devices.

https://cacerts.digicert.com/DigiCertGlobalRootCA.crt.pem

https://cacerts.digicert.com/DigiCertGlobalRootG2.crt.pem

https://cacerts.digicert.com/DigiCertGlobalRootG3.crt.pem

Troubleshooting

If you get the following error codes, make sure you have the latest version of Zoom installed.

702: SSL Certificate failed - Cert Name mismatch
703: SSL Certificate failed - Handshake failed

Zoom Community

Need some help from other Zoom users? Join the 70K+ other members in the Zoom Community! Login with your Zoom account credentials and start collaborating with your peers and get answers to your questions.

Browse answers

Zoom One

Zoom Spaces

Zoom Events

Zoom Contact Center

Industries

Services

Developer Platform

Partners

Explore

Learn

Connect

Support

Download Zoom Client

Zoom Virtual Backgrounds