Hi,
is there a long term (at least 10 years) server certificate for HiveMQ broker?
Thank you.
Hello @zandonella ,
To start, welcome to the HiveMQ Community! We are always happy to see new faces interested in MQTT.
This question is dependent on the version of HiveMQ that you are currently utilizing. For self-managed brokers, these certificates are generated by the user implementing TLS/SSL, and as a result the duration of the certificate will be determined during the certificate chain creation process.
For HiveMQ Cloud brokers, the current certificate is always available from the ‘FAQ’ section of our community forum (here), or via direct link (here). This currently has an expiration of June 4th, 2035.
Additionally, Cloud users utilizing Starter, Professional, or Enterprise tiers are able to provide their own certificates as well, similarly to self-hosted users, which allows for users to provide their own certificates, and as a result dictate their own expiration periods. A blog post regarding this feature is available here.
Best,
Aaron from the HiveMQ Team
Thank you for answer.
I not sure if I’ve understood when you speak of “Cloud users utilizing Starter, Professional, or Enterprise tiers”: I understand I could create client certificates but what about server certificate? Could I generate and set also it?
Best regards,
Paolo
Hello @zandonella ,
Thank you for the follow-up!
When utilizing HiveMQ Cloud, there are a number of available authentication methods available, depending on the chosen plan. Here is a quick snapshot of our pricing page showing a list of these available methods and their associated plans :
When looking at a Cloud environment using a Starter plan, for example, the “Access Management” portion of the page dictates certificate-based authentication methods.
This allows users to upload a public key certificate, identifying your root certificate authority, in order to allow client authentication based upon certificates.
Additional methods are available on a more custom basis as noted on our pricing page, and can be discussed and reviewed directly with our Sales teams, available here.
Best,
Aaron from the HiveMQ Team