VIP Maintenance Release - September 1, 2023 at 00:30 UTC (August 31, 2023 17:30 PST)

Friday, 1 September 4 hours

The maintenance is now complete. Thanks for your patience.


The scheduled maintenance is now underway. We'll keep you updated on our progress.


Broadcom is performing maintenance starting on September 1, 2023 at 00:30 UTC (August 31, 2023 17:30 PST) for a duration of 4 hours.

This release of VIP Authentication Services contains the following new features:

  • Ability to enable Number Challenge as a group policy
  • Separation of Modify and Delete permissions for the VIP End User Management role
  • Support for IPv6 IP addresses
  • Deeper VIP integration with Symantec SiteMinder
  • Support for User-Agent Client Hints
  • Streamlined flow for JavaScript and My VIP authentication
  • New reason codes when disabling credentials and support for disabling FIDO-enabled authenticators
  • Improved behavior when testing push-enabled credentials
  • Ability to view more search results in VIP Manager
  • Security updates and technical improvements

See the VIP Authentication Services 2023.August.01 Release Notes for information about this release.


There is no expected downtime and end users should not experience changes when using VIP.

Notice of Upcoming Impacting Enhancements

The following upcoming enhancements may have an impact on your VIP Service. Please review these items and take the appropriate actions, if required.

These updates are scheduled for October 26, 2023.

  • Upgraded signing algorithm for VIP Login

For greater security, VIP Login is being upgraded to use the SHA-256 algorithm when signing SAML messages. If your web applications or client does not accept SHA-256 signatures, you must upgrade your SAML clients to properly validate the SHA-256 signed message, or all SAML validations using VIP Login will fail.

  • SSL certificate renewal

VIP is renewing the SSL certificates for most of its API endpoints. The new SSL certificates use a new root and intermediate CA chain. You will experience issues with your VIP service connectivity if your systems do not trust the new CA chain.

You may be affected if you use one of the following API endpoints:

See KB article for detail.

Began at:

Affected components
  • VIP
    • VIP Self Service Portal
    • VIP Manager
    • VIP Retail Website
    • Reporting API
    • My VIP
    • Voice Delivery
    • User Authentication SAML Service
    • SMS Delivery
    • Mobile Push Delivery
    • User Authentication Javascript Service
    • Authenticator Validation and Management APIs
    • Authenticator Provisioning Service
    • User Validation and Management APIs
    • Intelligent Authentication