i am trying to connect clients with 2-way TLS authentication. The only way I can connect a device is by trusting it’s client certificate in the hivemq truststore.
Is it possible to just trust the root certificate of our PKI in the hivemq truststore and the client sends the whole chain (device/intermediate/root certificate) for authentication?
Otherwise we have to trust every single device certificate, which is not realistic in our case.
Is it possible to control the access of a device to certain topics by certificates?