Hi @Andrew Batta Greetings! Thank you for posting this question here.
To answer your questions, No, changing the root certificate does not have any impact on the device connectivity that are authenticated using TPS or SAS token.
The TPM attestation method using a different form of authentication that does not involve the root certificate. It rather uses an Endorsement key (EK) and Storage Root Key (SRK) as means to authenticate and provision devices. These are different and independent from the root certificate used for attesting devices using the X.509 authentication method. Please find the below image showing details on how TPM attestation works in Azure IoT Hub
The SAS authentication as well does not use the X.509 root certificate.
For more details, please refer the following resources.
- Programmatically create a Device Provisioning Service individual enrollment for TPM attestation
- TPM attestation process
- Device authentication concepts in IoT Central
Hope this helps. Please let us know if you have any additional questions.
If the response helped, please do click Accept Answer and Yes for the answer provided. Doing so would help other community members with similar issue identify the solution. I highly appreciate your contribution to the community.