Sectigo Cert

josecgomez · September 8, 2025, 2:50pm

PSA… #2
As @chaddb already pointed out

Sectigo changed their Intermediate CA and Root CA earlier this year. We just went through the renewal process this weekend and holy craptastic weekend batman. 0/10 do not recommend.

Any Linux box, Android or IOs device that is older than a couple of years will stick out its middle finger to you, and your uber driver about this certificate for hours on end.

We are still trying get one service up. Node still won’t recognize this cert no matter what I do. I even gave up and got a new certificate for one of our sub domains for LetsEncrypt cause our older Android devices just said… #Nope

Mad The Rock GIF

chaddb · September 8, 2025, 2:55pm

Workaro as of today is still working to deploy the new Root and Intermediate certs.

chaddb · September 8, 2025, 3:00pm

It’s not great. It’s quite the disruptive change.

josecgomez · September 8, 2025, 3:00pm

The biggest issue was our Mobile Devices, ther’s just no way to update those realistically in the field with new Root CAs

Mark_Wonsil · September 8, 2025, 3:05pm

Google has NO sense of humor when it comes to certificates. I forgot which update broke Wireless Warehouse last year, but I feel your pain.

josecgomez · September 8, 2025, 3:09pm

Absolutely Zero, Iv’e tried everything even ADB…