Subscribe to Help Center RSS FeedJumpCloud performs an annual cryptographic rotation of our global RADIUS SSL certificates. This ensures your downstream RADIUS client devices always communicate securely with legitimate, verified JumpCloud edge servers.
We're rotating the server certificates across all JumpCloud RADIUS servers on June 8, 2026. Depending on your network and endpoint configuration, you might need to take immediate action to prevent service disruption.
Network Configuration Impacts
- Manual Certificate Configurations: If your client workstations use a Wi-Fi or VPN configuration that relies on manually installed or pinned certificates from JumpCloud RADIUS, you must install both the current and new certificates on these devices immediately. Staging both maintains uninterrupted RADIUS authentication, particularly for networks using EAP-TTLS/PAP and PEAPv0 protocols.
- Automatic Certificate Configurations: If your workstations rely on an authentication method that fetches the RADIUS SSL certificate automatically from the server at runtime, you don't need to manually stage them. However, users might see a one-time OS prompt asking them to confirm or accept the new certificate on or shortly after June 8, 2026.
Action Steps
Install the new server certificate on all relevant managed devices before June 8, 2026. On this date, the new certificate takes over authentication for all inbound RADIUS access requests.
For detailed documentation, scripts, and download links for both certificates, see Update RADIUS Certificates for EAP-TTLS Devices.
If you have any questions or need deployment assistance, contact JumpCloud Support. Thank you for your cooperation and continued trust.
In this Article