How does HiveMQ generate client certificates for IoT devices? is there a self service GUI portal? can it be automated such that devices can be provisioned during an onboarding process to receive their certificate in an automated method?
or is it manual with openssl, saved and manually imported to the devices?
Thank you for your patience.
HiveMQ’s certificate management is based around Key- and Truststores that are manually filled with your server, and or client certificates.
You can follow the the HowTos in our use guide.
HiveMQ cloud basic does not support mutual TLS so you do not need the files “Certificate” and “Private Key”
You can create the Server Certificate file using the OpenSSL s_clientopenssl s_client -connect 4ad85b7fade04d07911be2ac1da2f5e4.s2.eu.hivemq.cloud:8883 -showcerts < /dev/null 2> /dev/null | sed -n '/BEGIN/,/END/p' > server.pem
This will create a file called “server.pem”, which you can use as “Server Certiciate”.
I took the liberty and created the file for your specific cloud deployment.
i think that my device needs the other files (deviceWise of telit).i did try to upgrade the cluster to standar version to look if i have more options to change this configuration with TLS but support have issues with the purchase
It looks like you are trying to connect to HiveMQ cloud, using an IP address. This will not work.
You need to use the fully qualified domain name as shown in the previous screenshot.
PS: This functionality is the same for HiveMQ basic and standard.
hi i also can’t generate my own ssl , i tried to download openssl but it doesnt work i have to run openssl on the website but also cant generate ssl can you generate me a valid ssl for 4038011a2fdc4d9b8c3123a10cc5f620 s2.eu.hivemq.cloud, thank you