Expiring Manufacturer's CA certificate on several docsis modem | docsis.org

You are here

Expiring Manufacturer's CA certificate on several docsis modem

6 posts / 0 new
Last post
fschlums
Expiring Manufacturer's CA certificate on several docsis modem

Hello all
there are several docsis3.0 and older CM out in the net with expiring Manufacturer's CA certificate within the next two years.
One of these are Thomson THG570 and THG571. (expire at 2022-12-12)
Does anybody know if Technicolor/Thomson will create a new firmware with a new cert?
Thank you

schg
They won't.

They won't.

Just configure your CMTS to ignore the validity period of the certificates.

jjonsson
How do you do that ?

How do you do that ?

fschlums
You can read the affected

You can read the affected modemcert if it's online by snmp:
snmpget -v2c -c DOCS-IETF-BPI2-MIB::docsBpi2CmDeviceManufCert.2
then add it to your cmts:
#cable privacy add-certificate manufacturer "VendorCERT"

jjonsson
"cable privacy add

"cable privacy add-certificate manufacturer "VendorCERT""

That is CMTS specific. Not something my CMTS can do.

Is it a problem ? Will cablemodem stop working after certificate expire date ?
Our cablemodems from Technicolor will expire in december. Technicolor will not release a new certificate nor firmware.

kwesibrunee
If Baseline Privacy is

If Baseline Privacy is enabled, the modem will cease to come online unless the certificate verification is skipped. The modem can still come online with privacy disabled however, or if you change the date on your CMTS (to before the Cert expired) it may work as well.

Log in or register to post comments