Update: A flowchart is available for download to guide efforts for final updates ahead of the migration, and how to update systems offline after the migration happens.
Update: QUATRA 1000/2000 systems should only be updated via Ethernet with WAVE Field Tool version 1.6.6 or later. This new version is currently pending release and will be available for download here.
Article Summary
A change will be made to the WAVE Cloud on September 27th that will prevent CEL-FI and SHIELD systems running outdated embedded software from connecting to the WAVE Portal. This situation does not affect the systems’ cellular/RF relay operation. Release of updated software for all affected products is underway. This article describes the changes, the timeline and partner communications plan, and what actions may be required of Nextivity Partners.
Note: In addition to the crucial information contained in this document, an FAQ article with further details is also available.
What’s changing?
As part of our ongoing commitment to security and remote management functionality, Nextivity is making necessary updates to the embedded software within CEL-FI and SHIELD systems, as well as our WAVE Cloud platform. These updates are in response to changes in Microsoft's Azure IoT Hub and related services, which are an integral part of our WAVE software ecosystem.
Systems capable of connecting directly to the WAVE Cloud via an integrated modem or ethernet port require an embedded software update to facilitate a root TLS certificate migration which will take place at the end of September. Systems which are not updated will lose their ability to connect to the WAVE Cloud, can no longer be remotely managed via the WAVE Portal, and will no longer be able to receive software updates without physical access to the system.
How does this affect the primary cellular/RF relay functionality of CEL-FI and SHIELD systems?
Cellular/RF relay functionality of CEL-FI and SHIELD systems is not affected by this migration. Nextivity systems are capable of operating independently without a connection to the WAVE Cloud or WAVE Portal. The cellular relay performance will not be impacted if the system does not receive this software update or is not reconnected to the WAVE Cloud.
What is the timeline for this migration?
- June 27th – Release of updated embedded software begins in phases across all products
- July 12th – All embedded software releases published and available by this date
- July 19th – Auto-update enabled for all releases on auto-update enrolled systems
- July 26th – First account-specific list of systems that may require action is provided
- Sept 20th – Final account-specific list of systems is emailed with one-week warning
- September 27, 2023 – Root TLS Certificate Cutover
- Systems not updated by this date will require a manual update via the WAVE Field Tool to regain their ability to connect to the WAVE Portal.
- Systems not updated by this date will require a manual update via the WAVE Field Tool to regain their ability to connect to the WAVE Portal.
Which products require an update?
Updated embedded software is being released for each of these product families:
Product Name | Minimum Version | Minimum Version for Mandatory Connection* | Note |
CEL-FI QUATRA 1000/2000 | Version 56 | Version 57 | - |
CEL-FI QUATRA 4000 Line (including i/e/c variants) |
Version 26 | Version 27 | Release contains additional improvements, detailed within the notes linked here. |
CEL-FI GO G41 | Version 24 | Version 26 | See link for additional release details. |
CEL-FI GO G51 | Version 11 | Version 12 | - |
CEL-FI SOLO | Version 21 | Version 21 | - |
CEL-FI GO RMT & RMOE | Version 12 | Version 12 | Release is pending. |
SHIELD EXTEND | Version 22 | Version 23 | See link for additional release details. |
SHIELD SOLO | Version 22 | Version 23 | See link for additional release details. |
Products that only connect to the WAVE App via Bluetooth, and do not have an integrated modem or ethernet port (such as the GO G31, GO G32, DUO, CONNECT C41, and ROAM R41), do not require an embedded software update. The necessary changes have already been published for these products within the recent WAVE App v1.30 release.
*Mandatory Connection: An additional software release has been published during the TLS Migration period to address an issue affecting systems configured to require a continuous connection to the WAVE Portal. Systems with this setting enabled require the version in this column to perform as expected.
What’s included in this update?
The following changes are included in the software update for each product in the table above:
- WAVE Cloud secure connectivity changes with support for the Root TLS Certificate migration
- Improved support for the WAVE Field Tool in the absence of a WAVE Portal connection
Additional improvements are included in the software release for some products. Further information is available in those release notes, linked in the table above.
How will these software updates be implemented? What might I need to do?
By default, systems connected to the WAVE Cloud receive software updates automatically without user action. The software versions above will be pushed to systems in phases over the next several weeks. The first of these updates will begin on June 27th. We will notify WAVE Portal users in mid-July once the releases for all products are published and available for any updates that need to be applied manually.
The following exception scenarios require further consideration and may require action on your part:
- WAVE Cloud-connected systems which have opted-out of auto-update
- Systems not currently connected to the WAVE Cloud
Action Required Scenario 1: Auto-Update has been disabled
Enabling auto-update is the best resolution for systems that are connected to the WAVE Portal. That can be done by clicking Options > Settings on the System page, checking the box that reads “Auto update software,” and clicking Update to save the setting. You can do this now.
If auto-update is not enabled, there are two possible outcomes:
- You or another user manually updates the system via WAVE Portal before September 27th
- The system becomes indefinitely disconnected from the WAVE Cloud on September 27th and will only regain Cloud connectivity following an in-person update using the WAVE Field Tool.
Action Required Scenario 2: The system isn’t connected to WAVE Cloud
A system must be connected to the WAVE Cloud before September 27th to receive a remote software update. After this date, systems which have not been updated will not be able to directly connect to the WAVE Cloud. This means they cannot be remotely monitored in the WAVE Portal or receive future software updates without physical access to the system.
The actions required of you in this scenario depend on the reason the system is offline, your organization’s role in the system’s maintenance, and whether any future use of the WAVE Portal is ever expected.
For example, a System Integrator with QUATRA installations might plan to notify customers with offline systems, asking them to connect the system to the Internet to receive a critical software update. The reports Nextivity will provide to partners will help monitor update progress and target support efforts.
How is Nextivity supporting partners in this effort? What are the “account-specific lists of systems”?
While migrations of this sort are sometimes necessary due to the nature of cloud security, they are also frustrating. We are taking steps to minimize disruption and focus efforts where they are needed.
At three milestones during this transition, Nextivity will email WAVE Portal users a list of systems that require attention. The list will detail those systems which your company has access to that are running outdated software, as of the last time they were connected to the WAVE Cloud.
This list of “At Risk” systems will be provided at the following time periods:
- After all embedded software releases are published and all online systems have had an opportunity to auto-update. Expected around July 26th
- Last week of August
- September 20th, one week before the cutover.
The list will contain: System Serial Number, Product Type, Date First Connected, Date Last Connected, Last Server Connection Method (LAN/SIM), Current Software Version, Auto-Update Enrollment Status, Mandatory Connection Setting, System Name*, Site Name*, Site Owner Name*, Site Owner’s Email*, Site Company Name*, Site Address*, Site Phone Number*
*Please note that, in select markets, regulations limit the availability of Owner data. Such limits will be respected. The data already available to you as a WAVE Portal user will be consolidated in this actionable report and emailed to you, listing only those systems known to be at risk of losing their WAVE Cloud connectivity if the software is not updated before September 27th.
Where can I get more information?
An additional FAQ article is available, as well as a Partner Portal playbook.