From September 30, 2021 customers with old browser and operating system versions, as well as customers using their own servers or hosting may experience problems:
- when connecting to Bitrix24.Sites and Stores;
- when connecting to Bitrix24 with the own domain service on Professional plan;
- when making API REST requests from your server to Bitrix24.
These problems may take place due to the DST Root CA X3 certificate expiration. The DST Root CA X3 certificate participates in the chain of client certificates issued by Let's Encrypt. It will last until 2024 to support devices with Android versions 2.3.6-7.1.1.
What to do?
The only solution is to use up-to-date software. Please, update your devices and browsers to the latest versions.
If you use Bitrix Virtual Appliance (VA) on your server, you must update the package ca-certificates with the command:
yum update -y ca-certificates
If you are using a different server environment, contact your server system administrator.
Connecting to sites and accounts
The problem does not concern:
- Windows >= XP SP3 (with automatic updates)
- macOS >= 10.12.1
- iOS >= 10
- Android >= 7.1.1
- Mozilla Firefox >= 50.0
- Ubuntu >= xenial / 16.04 (with updates)
- Debian >= jessie / 8 (with updates)
- Java 8 >= 8u141
- Java 7 >= 7u151
In other cases, you may experience problems with the connection such as an error about the certificates expiration when entering Bitrix24 sites, stores and accounts with your own domain.
REST/API requests
The problem will mostly affect clients who makes API requests from servers with old software that use:
- openssl-1.0.1- completely incompatible and will not work without collecting your own packages (CentOS 6).
- openssl-1.0.2 - it is necessary to update ca-certificates package on the servers (CentOS 7).
- openssl-1.1.x- fully compatible.
To solve this problem, contact your server system administrator.