We are using SSPR to send SMS tokens and new passwords using a SMS Gateway.
Part of configuring this is to import the certificate from the SMS Gateway. In our case, this process imports the following certificates:
DST Root CA X3
-- Let's encrypt Authority X3 -- THIS IS IMPORTED
---- api.obfuscated.com -- THIS IS IMPORTED
It all works fine, but the problem I have is that the api.obfuscated.com certificate has a short validity period, it expires every 3 months and we don't know when the service provider renews the certificate.
Would it not be sufficient to import the "Let's encrypt Authority X3" certificate? That one is valid for 10 years.
Does anyone know how to work with this to ensure SSPR service reliability in the SMS gateway?